GFI MailSecurity HTTP Management Interface Request Header Overflow
Critical Nessus Plugin ID 20016
SynopsisThe remote host contains an application that is affected by a buffer overflow vulnerability.
DescriptionAccording to its version number, the instance of GFI MailSecurity on the remote host suffers from a buffer overflow in its web-based moderator interface. An unauthenticated attacker can reportedly exploit this flaw by sending large strings in several areas of the HTTP request to gain control of the remote host.
SolutionApply the patch referenced in the vendor advisory above.