IMAP.Verb.Literal.Negative.Length
Description
This indicates an attack attempt against a buffer-overflow vulnerability in Novell NetMail.
The vulnerability is caused by an error when the vulnerable software handles malicious IMAP verb literals. It allows a remote attacker to execute
arbitrary code via sending a crafted IMAP COMMAND request.
Affected Products
Novell NetMail 3.5.2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply patch, available from the web site:
http://support.novell.com/servlet/downloadfile?file=/sec/pub/nm352e_ftf2_lx.tgz
http://support.novell.com/servlet/downloadfile?file=/sec/pub/nm352e_ftf2_nw.zip
http://support.novell.com/servlet/downloadfile?file=/sec/pub/nm352e_ftf2_win.zip
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-11 | 16.978 |