icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Xtramail < 1.12 POP3 Overflow

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote Xtramail POP server is vulnerable to a buffer overflow when the user supplies a long password string. An attacker may use this flaw to execute arbitrary code on this host with the privileges of the Xtramail server (typically, SYSTEM).

Solution

Upgrade to version 1.12 or higher.