Published: 28/03/2005 Updated: 18/10/2016

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.

Vulnerable Product	Search on Vulmon	Subscribe to Product
smail smail 3.2.0.120

A buffer overflow has been discovered in Smail, an electronic mail transport system, which allows remote attackers and local users to execute arbitrary code For the stable distribution (woody) this problem has been fixed in version 320114-4woody1 For the unstable distribution (sid) this problem has been fixed in version 320115-7 We recomme ...

/* * * 0 * * smail preparse_address_1() heap bof remote root exploit * * infamous42md AT hotpop DOT com * * Shouts: * * BMF, wipe with the left, eat with the right * * Notes: * * You can't have any characters in overflow buffer that isspace() returns true * for The shellcode is clear of them, but if your return address or retloc ...

source: wwwsecurityfocuscom/bid/12899/info Smail-3 is reported prone to multiple vulnerabilities These issues can allow a local or remote attacker to execute arbitrary code on a vulnerable computer A successful attack may lead to a complete compromise The following specific issues were identified: Smail-3 is vulnerable to a remote he ...

NVD-CWE-Other http://www.debian.org/security/2005/dsa-722 http://marc.info/?l=bugtraq&m=111177045217717&w=2 https://nvd.nist.gov https://www.debian.org/security/./dsa-722 https://www.exploit-db.com/exploits/900/

CVE-2005-0892

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect