Signature Detail
Short Name |
IMAP:OVERFLOW:IMAP-LSUB-OF |
|---|---|
Severity |
High |
Recommended |
Yes |
Category |
IMAP |
Keywords |
NetWin SurgeMail IMAPD LSUB Command Buffer Overflow |
Release Date |
2011/02/28 |
Update Number |
1873 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
IMAP: NetWin SurgeMail IMAPD LSUB Command Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the IMAP service in NetWin SurgeMail. It allows remote authenticated users to execute arbitrary code through long arguments to the LSUB command. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the IMAPD service.
Extended Description
SurgeMail is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary machine code in the context of the affected service. Failed exploit attempts will likely result in denial-of-service conditions. SurgeMail 3.8k4 is vulnerable; other versions may also be affected.
Affected Products
- NetWin SurgeMail 3.8k4
References
- BugTraq: 28377
- CVE: CVE-2008-1497