icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

WebStar Mail < 5.4.1 Tomcat Plugin Remote Overflow

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running WebSTAR Mail, a mail server for Mac OS X that offers its services via a web interface. WebStar runs with the Tomcat plugin enabled by default. This version of WebStar is vulnerable to an attack against the Tomcat plugin. Specifically, a long, user-supplied URI will result in a buffer overflow. Successful exploitation would lead to the execution of arbitrary code on the remote server.

Solution

Upgrade to a version greater than 5.4.1.