MailEnable IMAP login buffer overflow

mailenable-imap-login-bo (20006) The risk level is classified as HighHigh Risk

Description:

MailEnable is vulnerable to a buffer overflow, caused by improper bounds checking of user-supplied input in the IMAP service when handling the LOGIN command. A remote attacker could exploit this by sending an overly-long argument containing more than 1024 bytes, which would allow the attacker to execute arbitrary code on the system or cause a denial of service.

Platforms Affected:

  • MailEnable, MailEnable Professional Edition 1.54
  • Microsoft, Windows 2000 Advanced Server
  • Microsoft, Windows 2000 Professional
  • Microsoft, Windows 2003 Server Enterprise
  • Microsoft, Windows 2003 Server Standard
  • Microsoft, Windows 2003 Server Web
  • Microsoft, Windows NT 4.0 Server

Remedy:

Install the Hotfix/Update ME-10009 available from the MailEnable Web site. See References.

Consequences:

Gain Access

References:

  • MailEnable- Enterprise Edition, MailEnable- High Performance Mail Server Software at http://www.mailenable.com/enter_edition.asp.
  • MailEnable- Professional Edition Hotfix download page, MailEnable- Professional Edition at http://www.mailenable.com/hotfix/default.asp.
  • BID-13040: MailEnable IMAP Login Request Buffer Overflow Vulnerability
  • CVE-2005-1015: Buffer overflow in MailEnable Imapd (MEIMAP.exe) allows remote attackers to execute arbitrary code via a long LOGIN command.
  • CVE-2005-3993: Multiple unspecified vulnerabilities in MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allow attackers to cause a denial of service (crash) via invalid IMAP commands.
  • FrSIRT/ADV-2005-2704: MailEnable EXAMINE Command Remote Buffer Overflow Vulnerability
  • OSVDB ID: 21388: MailEnable Invalid IMAP Commands Remote DoS
  • SA17820: MailEnable Invalid IMAP Commands Denial of Service Vulnerability

Reported:

Apr 07, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page