exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-127
Posted Jul 16, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-127 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IPSwitch IMail. Authentication might be required to exploit this vulnerability. The specific flaw exists within imailsrv.exe which is invoked to handle messages sent to the imailsrv. When a message subject contains a "?Q?" operator the string following that sequence is copied to a local stack buffer. No validation of the data or data length is done. In order to reach this code path a mailing list must be password protected (authentication required) or have previously had a password configured (no authentication required). A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.

tags | advisory, remote, arbitrary, local
MD5 | ee9eae402ef5c43b7deb5f45af40fc1a
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Santa Hacker Speaks To Girl Via Smart Camera
Posted Dec 13, 2019

tags | headline, hacker, privacy, flaw, password, spyware
Senate Judiciary Committee Interrogates Apple, Facebook About Crypto
Posted Dec 12, 2019

tags | headline, government, privacy, usa, apple, facebook, cryptography
Signal Tests Upgraded Cryptography For Group Functions
Posted Dec 12, 2019

tags | headline, privacy, phone, cryptography
How Hackers Are Breaking Into Ring Cameras
Posted Dec 12, 2019

tags | headline, hacker, privacy, amazon, flaw, spyware
Google Calls Out Apple's Intelligent Tracking Protection
Posted Dec 12, 2019

tags | headline, privacy, flaw, google, apple
Intel's SGX Coughs Up Crypto Keys When Scientists Tweak CPU Voltage
Posted Dec 11, 2019

tags | headline, flaw, cryptography, intel
Microsoft Fixes Exploited Privilege Escalation Flaw, 34 More Bugs
Posted Dec 11, 2019

tags | headline, microsoft, flaw, patch
Adobe Announces 25 Bug Fixes, 21 In Acrobat Products
Posted Dec 11, 2019

tags | headline, flaw, adobe, patch
TrickBot Gang Is Now Supplying North Korea
Posted Dec 11, 2019

tags | headline, government, malware, cyberwar, korea
IG Report Says FBI Justified In Starting Russia Probe, Barr Disagrees
Posted Dec 10, 2019

tags | headline, government, usa, russia, fraud, cyberwar, fbi
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close