MailMax IMAP Server SELECT Command Remote Overflow

This script is Copyright (C) 2003-2011 Tenable Network Security, Inc.


Synopsis :

Arbitrary commands may be executed on the remote host using the
remote IMAP server.

Description :

The remote host is running a version of the MailMax IMAP server which,
according to its version number, is vulnerable to various overflows which
may allow an authenticated user to execute arbitrary commands on this
host or to disable it remotely.

Solution :

Upgrade to MailMax 5.5 or newer

Risk factor :

Medium / CVSS Base Score : 6.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P)
CVSS Temporal Score : 4.8
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Gain a shell remotely

Nessus Plugin ID: 11637 (mailmax_imap_overflows2.nasl)

Bugtraq ID: 7327

CVE ID: CVE-2003-0319