Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Xtramail < 1.12 Control Server Overflow Denial of Service

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote Xtramail Control Server is vulnerable to a buffer overflow when a user supplies a too long argument to as its username. An attacker may use this flaw to disable this service remotely or to execute arbitrary code on this host, with the privileges of the Xtramail server (typically, SYSTEM).

Solution

Upgrade to Xtramail version 1.12 or higher.