MailMax IMAP Server SELECT Command Remote Overflow

medium Nessus Plugin ID 11637

Language:

Synopsis

Arbitrary commands may be executed on the remote host using the remote IMAP server.

Description

The remote host is running a version of the MailMax IMAP server which, according to its version number, is vulnerable to various overflows which may allow an authenticated user to execute arbitrary commands on this host or to disable it remotely.

Solution

Upgrade to MailMax 5.5 or newer

Plugin Details

Severity: Medium

ID: 11637

File Name: mailmax_imap_overflows2.nasl

Version: 1.14

Type: remote

Family: Gain a shell remotely

Published: 5/19/2003

Updated: 7/14/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 4/11/2003

Reference Information

CVE: CVE-2003-0319

BID: 7327

Detections

Analytics