File: 2046.txt

package info (click to toggle)
snort 2.7.0-20.4
  • links: PTS
  • area: main
  • in suites: lenny
  • size: 34,512 kB
  • ctags: 18,772
  • sloc: ansic: 115,404; sh: 10,893; makefile: 1,372; perl: 487; sql: 213
file content (68 lines) | stat: -rw-r--r-- 1,414 bytes parent folder | download | duplicates (4)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
Rule:

--
Sid:
2046

--
Summary:
The IMAP daemon distributed by Washington University (Wu-imapd) is
subject to a buffer overflow condition which may result in a denial of service.

--
Impact:
Possible code execution and Denial of Service.

--
Detailed Information:
If a valid user of an IMAP service using wu-imapd makes a partial
request of mailbox attributes, a buffer overflow occurs in the daemon
resulting in the crash of the process.

Execution of arbitrary code may be possible with the privileges of the
user running imapd.

Exploits are widely available for this vulnerability.

--
Affected Systems:
	Washington University wu-imapd 2000.0 c
	Washington University wu-imapd 2000.0 b
	Washington University wu-imapd 2000.0 a
	Washington University wu-imapd 2000.0
	Washington University wu-imapd 2001.0 a
	Washington University wu-imapd 2001.0

--
Attack Scenarios:
The attacker could use one of the available exploits or when logged in 
as a valid user, make a partial request for the mailbox attributes.

--
Ease of Attack:
Simple

--
False Positives:
None Known

--
False Negatives:
None Known

--
Corrective Action:
Apply the appropriate patches for the affected systems.

Upgrade to the latest non-affected version of the software.

--
Contributors:
Sourcefire Vulnerability Research Team
Brian Caswell <bmc@sourcefire.com>
Nigel Houghton <nigel.houghton@sourcefire.com>

--
Additional References:

--