Info

Disclosure

Sep 01, 2005

Discovery

Apr 25, 2005

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in Novell NetMail. The Novell NetMail IMAP daemon fails to calculate size before allocating memory for the command continuation requests resulting in a heap overflow. With a specially crafted request, an attacker can cause arbitrary code execution with the privileges of the underlying user (usually NetMailService), resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 3.52C or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Novell, Inc.	Novell NetMail	3.52C
		3.53B
		3.52A
		3.52
		3.10h
		3.10g
		3.10f
		3.10e
		3.10d
		3.10c
		3.10b
		3.10a
		3.10
		3.1f
		3.1
		3.0.3b
		3.0.3a
		3.0.3
		3.0.1

References

Bugtraq ID: 14718
Secunia Advisory ID: 15644
Related OSVDB ID: 17238 17239 17240 17241
CVE ID: 2005-1758 (see also: NVD)
VUPEN Advisory: ADV-2005-0727
Vendor Specific Advisory URL: http://support.novell.com/cgi-bin/search/searchtid.cgi?/10097957.htm
Other Advisory URL: http://www.idefense.com/application/poi/display?id=301&type=vulnerabilities
Vendor URL: http://www.novell.com/products/nims/index.html
Keyword: TID10097957

Credit

Pedram Amini - OpenRCE

Direct URL: http://osvdb.org/17239

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Novell, Inc.

Novell NetMail

References

Credit