Published: 21/12/2005 Updated: 07/03/2011

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in Qualcomm WorldMail 3.0 allows remote malicious users to execute arbitrary code via a long IMAP command that ends with a "}" character, as demonstrated using long (1) LIST, (2) LSUB, (3) SEARCH TEXT, (4) STATUS INBOX, (5) AUTHENTICATE, (6) FETCH, (7) SELECT, and (8) COPY commands.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qualcomm worldmail 3.0

## # $Id: eudora_listrb 9653 2010-07-01 23:33:07Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Me ...

#!/usr/bin/python ################################################################################### # # PRE AUTHENTICATION Eudora Qualcomm WorldMail 30 IMAPd Service 61190 Overflow # # Discovered by Tim Shelton - security-advisories@acs-inccom # # Coded by mati@see-securitycom # # Details: # * SEH gets overwritten at 970 bytes in the LIST ...

CWE-119 http://seclists.org/lists/fulldisclosure/2005/Dec/1037.html http://www.idefense.com/intelligence/vulnerabilities/display.php?id=359 http://www.securityfocus.com/bid/15980 http://securitytracker.com/id?1015391 http://secunia.com/advisories/17640 http://securityreason.com/securityalert/277 http://www.vupen.com/english/advisories/2005/3005 https://nvd.nist.gov https://www.exploit-db.com/exploits/16474/

CVE-2005-4267

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect