Info

Disclosure

Apr 22, 2005

Discovery

Unknown

Dates

Exploit

Apr 24, 2005

Solution

Unknown

Description

A remote overflow exists in MailEnable. The 'MEHTTPS.exe' service fails to perform proper bounds checking resulting in a buffer overflow. By supplying an overly long string in the 'Authorization' header, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, MailEnable has released a patch to address this vulnerability.

Products

MailEnable Pty. Ltd.	MailEnable Professional Edition	1.54
MailEnable Pty. Ltd.	MailEnable Entreprise Edition	1.04

References

Security Tracker: 1013786
Bugtraq ID: 13350
Secunia Advisory ID: 15062
Metasploit ID: 15737
ISS X-Force ID: 20240
Vendor URL: http://www.mailenable.com/
Vendor Specific Solution URL: http://www.mailenable.com/hotfix/MEHTTPS.zip
Generic Exploit URL: http://www.saintcorporation.com/cgi-bin/exploit_info/mailenable_httpmail_authorization
http://www.x0n3-h4ck.org/upload/x0n3-h4ck_mailenable_https.pl

Credit

CorryL - corryl80gmail.com -

Direct URL: http://osvdb.org/15737

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

MailEnable Pty. Ltd.

MailEnable Professional Edition

MailEnable Entreprise Edition

References

Credit