True North eMailServer SEARCH Command Remote Overflow
Medium Nessus Network Monitor Plugin ID 3440
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running the True North eMailServer. This version of eMailServer is vulnerable to a remote buffer overflow when passed a long 'SEARCH' directive. An attacker exploiting this flaw would need to be able to authenticate with a valid account. Successful exploitation would result in the attacker executing arbitrary code.
SolutionNo solution is known at this time.