Description

Buffer overflows in Xtramail 1.11 allow attackers to cause a denial of service (crash) and possibly execute arbitrary commands via (1) a long PASS command in the POP3 service, (2) a long HELO command in the SMTP service, or (3) a long user name in the Control Service.

References

http://marc.info/?l=bugtraq&m=94226003804744&w=2

http://www.securityfocus.com/bid/791

https://exchange.xforce.ibmcloud.com/vulnerabilities/3488

Details

Risk Information

CVSS v2