icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

True North eMailServer SEARCH Command Remote Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running the True North eMailServer. This version of eMailServer is vulnerable to a remote buffer overflow when passed a long 'SEARCH' directive. An attacker exploiting this flaw would need to be able to authenticate with a valid account. Successful exploitation would result in the attacker executing arbitrary code.

Solution

No solution is known at this time.