|
|
CVE Reference: CVE-2006-4364 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4364 |
|
|
Description: Multiple heap-based buffer overflows in the POP3 server in Alt-N Technologies MDaemon before 9.0.6 allow remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via long strings that contain '@' characters in the (1) USER and (2) APOP commands. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28517 ST 1016729 SREASON http://securityreason.com/securityalert/1446 SAID Secunia Advisory: SA21595 OSVDB 28125 MISC http://www.infigo.hr/en/in_focus/advisories/INFIGO-2006-08-04 MILW0RM http://milw0rm.com/exploits/2245 CONFIRM http://files.altn.com/MDaemon/Release/RelNotes_en.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/444015/100/0/threaded BID 19651 |
|
| Return to the previous page. |
