Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and previous versions, as implemented in DMail, SurgeFTP, and possibly other packages, could allow malicious users to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netwin dmail 2.8e |
||
netwin dmail 2.7q |
||
netwin surgeftp 1.0b |
||
netwin dmail 2.8g |
||
netwin dmail 2.8f |
||
netwin surgeftp 2.0a |
||
netwin dmail 2.5d |
||
netwin dmail 2.7 |
||
netwin dmail 2.8i |
||
netwin dmail 2.7r |
||
netwin dmail 2.8h |
||
netwin surgeftp 2.0b |