Intrusion Prevention

MailEnable.WebMail.Authentication.Buffer.Overflow

Description

This indicates a possible exploit of a buffer overflow vulnerability in HTTPMail, a part of MailEnable, that may allow remote attackers to execute arbitrary code via a long HTTP Authorization header. To exploit this vulnerability, an attacker can send a specially crafted request to a vulnerable system on TCP port 8080, causing a buffer overflow that may allow execution of arbitrary code.

Affected Products

MailEnable Enterprise 1.04 and earlier.
Professional 1.54 and earlier.

Impact

The execution of arbitrary code on the system.

Recommended Actions

MailEnable addresses this issue in their hotfix dated April 22, 2005 (ME-10002).

CVE References

CVE-2005-1348

Other References

1