Possible Buffer Overflow in CMailServer
Created 5/20/03
CAN 2003-0280
Impact
An attacker could send a specially constructed request which crashes the
server or executes arbitrary code with system privileges.
Background
The CMailServer
application is a mail server which runs on Microsoft operating systems and
provides e-mail services. CMailServer is compatible with many popular e-mail
clients, and also has a web-based interface. It also supports multiple domain
names and ESMTP authentication.
The Problem
The vulnerability exists due to insufficient bounds checking when parsing
e-mail headers. Specifically, an overly long "MAIL FROM" or "RCPT TO"
e-mail header may cause CMailServer to crash and corrupt sensitive memory.
It may be possible to execute arbitrary code with system privileges.
Resolutions
Upgrade to CMailServer
version 4.0.2003.03.30 or higher.
Where can I read more about this?
This vulnerability was posted to VulnWatch and SecurityFocus bid 7547 and bid 7548.