|
 |
|
SurgeMail Payment Emails "amount" Format String Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA26060
|
|
|
Release Date:
|
2007-07-12
|
|
|
Critical:
|

Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | SurgeMail 3.x
|
|
|
Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS! |
|
|
Description: Nico Leidecker has reported a vulnerability in SurgeMail, which can be exploited by malicious users to potentially compromise a vulnerable system.
The vulnerability is caused due to a format string error when processing the "amout" value of payment emails. This can potentially be exploited to execute arbitrary code by setting a specially crafted "amount" value.
Successful exploitation requires the privileges to change the "amount" of payment emails.
The vulnerability is reported in version 3.7b8. Other versions may also be affected.
Solution: Reportedly, this has been fixed. Contact the vendor for further details.
Provided and/or discovered by: Nico Leidecker, Portcullis Computer Security Ltd.
Original Advisory: http://lists.grok.org.uk/pipermail/fu...20070710/98374694/attachment-0029.txt
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
7 Related Secunia Security Advisories
|
|
|
1. SurgeMail IMAP Processing Denial of Service Vulnerability
|
|
2. SurgeMail Format String and Buffer Overflow Vulnerabilities
|
|
3. SurgeMail Webmail "Host" Header Processing Denial of Service
|
|
4. SurgeMail "SEARCH" Command Buffer Overflow
|
|
5. SurgeMail webmail Unspecified Security Bypass
|
|
6. SurgeMail Unspecified Cross-Site Scripting Vulnerabilities
|
|
7. SurgeMail Three Vulnerabilities
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|

|
 |
Secunia PSI Scan | Patch | Track Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|