MailEnable POP3 Server APOP Command Remote Buffer Overflow
Critical Nessus Plugin ID 21139
SynopsisThe remote POP3 server is affected by a buffer overflow flaw.
DescriptionThe remote host is running MailEnable, a commercial mail server for Windows.
The POP3 server bundled with the version of MailEnable on the remote host has a buffer overflow flaw involving the APOP command that can be exploited remotely by an unauthenticated attacker to crash the affected service and possibly to execute code remotely.
SolutionApply the ME-10012 hotfix or upgrade to MailEnable Standard Edition 1.94 / Professional Edition 1.74 / Enterprise Edition 1.22 or later.