NetWin DMail ETRN Buffer Overflow Vulnerability
BID:1297
Info
NetWin DMail ETRN Buffer Overflow Vulnerability
| Bugtraq ID: | 1297 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 01 2000 12:00AM |
| Updated: | Jun 01 2000 12:00AM |
| Credit: | First posted BugTraq by Eric Andry <[email protected]> on June 1, 2000. |
| Vulnerable: |
NetWin DMail 2.8 h NetWin DMail 2.8 g NetWin DMail 2.8 f NetWin DMail 2.8 e NetWin DMail 2.7 q NetWin DMail 2.7 |
| Not Vulnerable: |
NetWin DMail 2.8 i NetWin DMail 2.7 r |
Discussion
NetWin DMail ETRN Buffer Overflow Vulnerability
NetWin's DMail is an alternative mail-server solution for unix and NT servers. There is a buffer overflow vulnerability in the server daemon that could allow remote attackers to execute arbitrary commands as root or cause a denial of service. The overflow occurs when a large buffer is sent to argument the ETRN command: If over 260 characters are sent, the stack is corrupted and the mailserver will crash.
NetWin's DMail is an alternative mail-server solution for unix and NT servers. There is a buffer overflow vulnerability in the server daemon that could allow remote attackers to execute arbitrary commands as root or cause a denial of service. The overflow occurs when a large buffer is sent to argument the ETRN command: If over 260 characters are sent, the stack is corrupted and the mailserver will crash.
Exploit / POC
NetWin DMail ETRN Buffer Overflow Vulnerability
exploit available
exploit available
Solution / Fix
NetWin DMail ETRN Buffer Overflow Vulnerability
Solution:
Linux and Solaris users should upgrade to DMail 2.7r or 2.8k (Beta build) available at ftp://ftp.netwinsite.com/pub/dmail/
From the vendor:
We are building new versions for all platforms at the moment, if you can't find a version for your platform then send us an email ([email protected]) and we'll make sure it gets built.
Solution:
Linux and Solaris users should upgrade to DMail 2.7r or 2.8k (Beta build) available at ftp://ftp.netwinsite.com/pub/dmail/
From the vendor:
We are building new versions for all platforms at the moment, if you can't find a version for your platform then send us an email ([email protected]) and we'll make sure it gets built.