Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

WebStar Mail < 5.4.1 Tomcat Plugin Remote Overflow

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running WebSTAR Mail, a mail server for Mac OS X that offers its services via a web interface. WebStar runs with the Tomcat plugin enabled by default. This version of WebStar is vulnerable to an attack against the Tomcat plugin. Specifically, a long, user-supplied URI will result in a buffer overflow. Successful exploitation would lead to the execution of arbitrary code on the remote server.

Solution

Upgrade to a version greater than 5.4.1.