Main Menu

Free Services

Critical Alerts

- 28 May 2008

Adobe Flash Player Unspecified Remote Code Execution Vulnerability

 

- 11 Mar 2008

Microsoft Excel Multiple Remote Code Execution Vulnerabilities

 

- 16 Jan 2008

Microsoft Excel File Handling Remote Arbitrary Code Execution Vulnerability

 

- 13 Dec 2007

JustSystems Ichitaro "JSGCI.DLL" Document Processing Remote Buffer Overflow Vulnerability

 

- 11 Dec 2007

Microsoft Internet Explorer Multiple Remote Memory Corruption Vulnerabilities

 

Advisories » MailEnable IMAP Service Multiple Remote Denial of Service and Buffer Overflow Vulnerabilities

 

Release Date: 10/03/2008 Severity: Moderately Critical Moderately Critical
SecWatch Advisory: SWID1020608 Cause: Boundary error
Solution Status: Unpatched Impact: Denial of service
Execution of arbitrary code
Exploit Status: Exploit Available Access Vector: From remote
 
Affected Software: MailEnable Enterprise Edition 3.x
MailEnable Professional 3.x
 

 

Description:

Multiple vulnerabilities in MailEnable have been reported, which can be exploited by remote users to trigger denial of service conditions or to compromise a vulnerable system.

1) Boundary errors exist when handling overly long arguments passed to the FETCH, EXAMINE, and UNSUBSCRIBE commands within the IMAP service (MEIMAPS.EXE), which can be exploited to cause buffer overflow and execute arbitrary code.

2) NULL-pointer dereference errors exist when handling no arguments passed to the SEARCH and APPEND commands within the IMAP service (MEIMAPS.EXE), which can be exploited to crash the service.

 

Affected:

MailEnable Professional version 3.13. Other versions may also be affected.

 

Proof of Concept:

Demonstration exploit code is available:
http://secwatch.org/exploits/2008/03/imap.pl.info

 

Solution:

There was no vendor-supplied solution at the time of entry.

 

Credits:

Luigi Auriemma

 

Free Vulnerability Notification Service

Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.

 

Related Vulnerabilities and Exploits

14 Mar 08: MailEnable <= 3.13 MailEnable IMAP Service "Fetch" post-au.. (imap.pl)

13 Mar 08: MailEnable SMTP Service EXPN/VRFY Command Handl.. (mailenable_smtp.py)

10 Mar 08: MailEnable SMTP Service EXPN/VRFY Command Handling Remote Denial ..