Xtramail < 1.12 Control Server Overflow Denial of Service
High Nessus Network Monitor Plugin ID 1799
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote Xtramail Control Server is vulnerable to a buffer overflow when a user supplies a too long argument to as its username. An attacker may use this flaw to disable this service remotely or to execute arbitrary code on this host, with the privileges of the Xtramail server (typically, SYSTEM).
SolutionUpgrade to Xtramail version 1.12 or higher.