Novell NetMail IMAP Agent Long Verb Arguments Remote Overflow

This script is Copyright (C) 2005-2014 Tenable Network Security, Inc.


Synopsis :

The remote IMAP server is affected by a buffer overflow vulnerability.

Description :

The remote host is running Novell NetMail, a messaging and calendaring
system for Windows, Linux, Unix, and NetWare.

The IMAP agent installed on the remote host as part of Novell NetMail
is affected by a stack-based buffer overflow due to its improper
handling of long arguments to selected IMAP commands while in an
authenticated state. Successful exploitation of this issue may lead
to the execution of arbitrary code on the remote host.

See also :

http://www.zerodayinitiative.com/advisories/ZDI-05-003.html
http://www.nessus.org/u?76172f4b

Solution :

Upgrade to NetMail 3.52E FTF (Field Test File) 1 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.2
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Gain a shell remotely

Nessus Plugin ID: 20318 ()

Bugtraq ID: 15491

CVE ID: CVE-2005-3314