Bugtraq mailing list archives

Remote DoS/Access Attack in Internet Anywhere Mail Server(POP 3) v2.3.1

From: steve () CELL2000 NET (Steven Alexander)
Date: Mon, 27 Dec 1999 16:56:17 -0600


Version 2.3.1 of True North Software's Internet Anywhere Mail Server contain
a buffer overflow vulnerability in it's POP3 mail server.  By entering a
username that is more than a few hundred characters,
mailserv.exe will crash which will stop SMTP and POP3 as they are both
controlled by the same executable.  Note that EIP is overwritten and remote
access can be gained.

The newest version, version 3.1.3 of the software is not vulnerable.  All
users of
version 2.3.1 of the software should upgrade as v2.3.1 and other older
versions are no longer supported
by the vendor.

-Steven Alexander
 steve () cell2000 net

Current thread:

Local / Remote Remote DoS Attack in Rover POP3 Server V1.1 NT From aVirt Ussr Labs (Dec 27)
- Remote DoS/Access Attack in Internet Anywhere Mail Server(POP 3) v2.3.1 Steven Alexander (Dec 27)
- Trend Micro InterScan VirusWall SMTP bug asl () USA ALCATEL COM (Dec 27)
- L0pht Advisory: initscripts-4.48-1 RedHat Linux 6.1 Mudge (Dec 27)
- UnixWare local pis exploit Brock Tellier (Dec 27)
- Third Party Software Affected by IIS "Escape Character Parsing" V ulnerability Microsoft Product Security Response Team (Dec 28)
- majordomo local exploit Brock Tellier (Dec 28)
  - $cf Security flaw Shevek (Dec 02)
  - Re: majordomo local exploit Christopher Schulte (Dec 28)
  - Re: majordomo local exploit Todd C. Miller (Dec 28)
    - AltaVista rudi carell (Dec 29)
    - Re: majordomo local exploit Taneli Huuskonen (Dec 29)

(Thread continues...)