virus logo Intrusion Prevention

Alt-N.MDaemon.WorldClient.Param.Handling.Buffer.Overflow

description-logoDescription

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in MDaemon Email Server that was disclosed by Shadow Broker as Easyfun exploit.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker may be able to exploit this to execute arbitrary Operating System Commands within the context of the application.

affected-products-logoAffected Products

MDaemon/WorldClient pre 9.5.6

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

https://github.com/misterch0c/shadowbroker
ID 44057
Created Jun 07, 2017
Updated Oct 26, 2017
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App Other