Qbik WinGate LIST Command Remote Denial of Service Vulnerability
BID:30606
Info
Qbik WinGate LIST Command Remote Denial of Service Vulnerability
| Bugtraq ID: | 30606 |
| Class: | Design Error |
| CVE: |
CVE-2008-3606 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 08 2008 12:00AM |
| Updated: | May 07 2015 05:25PM |
| Credit: | João Antunes |
| Vulnerable: |
Qbik WinGate 6.2.2 |
| Not Vulnerable: | |
Discussion
Qbik WinGate LIST Command Remote Denial of Service Vulnerability
WinGate is prone to a remote denial-of-service vulnerability affecting the application's IMAP email server.
Exploiting this issue will consume computer resources and deny access to legitimate users.
WinGate 6.2.2 is vulnerable; other versions may also be affected.
WinGate is prone to a remote denial-of-service vulnerability affecting the application's IMAP email server.
Exploiting this issue will consume computer resources and deny access to legitimate users.
WinGate 6.2.2 is vulnerable; other versions may also be affected.
Exploit / POC
Qbik WinGate LIST Command Remote Denial of Service Vulnerability
The following example command is available:
LIST Ax1000 *
The following example command is available:
LIST Ax1000 *
Solution / Fix
Qbik WinGate LIST Command Remote Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Qbik WinGate LIST Command Remote Denial of Service Vulnerability
References:
References:
- Vendor Homepage (Qbik)
- [AJECT] WinGate Email Server (IMAP) vulnerability (João Antunes