CommuniGate Pro HTTP Configuration Port Remote Overflow
High Nessus Plugin ID 10048
SynopsisThe remote service has a buffer overflow vulnerability.
DescriptionThe remote host appears to be running Communigate Pro, a commercial email and groupware application.
It was possible to crash this service by :
- First, connecting to port 8010 and sending 70 KB of data (AAA[...]AAA) followed by '\r\n'.
- Then, connecting to port 25.
A remote attacker could exploit this to crash the service, or possibly execute arbitrary code.
SolutionUpgrade to Communigate Pro version 3.2 or later.