|
Family: Denial of Service --> Category: denial
MailEnable IMAP Service Remote Buffer Overflows Vulnerability Scan
Vulnerability Scan Summary Checks for Remote Buffer Overflows in MailEnable's IMAP Service
Detailed Explanation for this Vulnerability Test
The target is running at least one instance of MailEnable's IMAP
service. Two flaws exist in MailEnable Professional Edition 1.52 and
earlier as well as MailEnable Enterprise Edition 1.01 and earlier - a
stack-based buffer overflow and an object pointer overwrite. A remote
attacker can use either vulnerability to execute arbitrary code on the
target. More information is available at :
http://www.hat-squad.com/en/000102.html
Solution : Apply the IMAP hotfix dated 25 November 2004 and found at :
http://www.mailenable.com/hotfix/default.asp
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|