BID:22857

Novell NetMail Multiple Buffer Overflow Vulnerabilities

Info

Novell NetMail Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	22857
Class:	Boundary Condition Error
CVE:	CVE-2007-1350
Remote:	Yes
Local:	No
Published:	Mar 07 2007 12:00AM
Updated:	Mar 19 2007 07:04PM
Credit:	Discovery is credited to an anonymous researcher.
Vulnerable:	Novell NetMail 3.52 D Novell NetMail 3.52 C1 Novell NetMail 3.52 C Novell NetMail 3.52 B Novell NetMail 3.52 A Novell NetMail 3.52 Novell NetMail 3.52e-ftfl

Not Vulnerable:	Novell NetMail 3.52 E

Discussion

Novell NetMail Multiple Buffer Overflow Vulnerabilities

Novell NetMail is prone to multiple remotely exploitable buffer-overflow vulnerabilities because it fails to do proper bounds checking on user-supplied input.

A successful exploit could let a remote attacker execute arbitrary code in the context of the affected application.

Exploit / POC

Novell NetMail Multiple Buffer Overflow Vulnerabilities

The following exploit is available to members of the Immunity Partner's program:

https://www.immunityinc.com/downloads/immpartners/netmail_webadmin.tar

Solution / Fix

Novell NetMail Multiple Buffer Overflow Vulnerabilities

Solution:
The vendor has released version 3.52E to address this issue. Please see the references for details on obtaining and applying the appropriate updates.

References

Novell NetMail Multiple Buffer Overflow Vulnerabilities

References:

NetMail 3.52E Update (Novell)
NetMail Product Page (Novell)
ZDI-07-009: Novell Netmail WebAdmin Buffer Overflow Vulnerability (ZDI)
Vulnerability Note VU#919369 Novell Netmail WebAdmin buffer overflow vulnerabili (US-CERT)
ZDI-07-009 Novell Netmail WebAdmin Buffer Overflow Vulnerability (Zero Day Initiative)