|
|
| |
"Novell NetMail is an e-mail and calendaring system that is based on Internet-standard messaging and security protocols."
Lack of proper length checking allow attackers to execute arbitrary code by overflowing an internal buffer used by the Novell NetMail. |
| |
Credit:
The information has been provided by Secunia Research.
The original article can be found at: http://secunia.com/advisories/15925/
|
| |
Vulnerable Systems:
* Novell NetMail version 3.52C
Immune Systems:
* Novell NetMail version 3.52D
The vulnerability is caused due to a boundary error in the NMAP (Network Messaging Application Protocol) Agent when handling an overly long user name in the "USER" command. This can be exploited to cause a stack-based buffer overflow and allows arbitrary code execution.
Successful exploitation requires valid logon to the NMAP Agent (e.g. if the default NMAP authentication credential has not been changed).
Vendor Status:
The vendor has issued an update:
NetWare: http://support.novell.com/servlet/filedownload/pub/netmail352d_nw.zip
Windows: http://support.novell.com/servlet/filedownload/pub/netmail352d_win.zip
Linux: http://support.novell.com/servle...load/sec/pub/netmail352d_lin.tgz
CVE Information:
CAN-2005-2469
Disclosure Timeline:
18/07/2005 - Initial vendor notification
18/07/2005 - Initial vendor reply
10/10/2005 - Vendor released fixed version
12/10/2005 - Public disclosure
|
|
|
|
|
|
|
|
