Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

UW-IMAP < 2007d.404 Multiple Utility Mailbox Name Overflow



The remote host is vulnerable to a buffer overflow.


There is a flaw in the remote UW-IMAP server that allows a local user to execute arbitrary code on the server. The flaw is in the way that UW-IMAP handles malformed data sent to the 'tmail' and 'dmail' local executables. An attacker exploiting this flaw would need local access as well as the ability to execute the aforementioned binaries. Successful exploiation would result in the attacker executing arbitrary code as the 'root' user.


Upgrade to version 2007d.404 or higher.