Published: 20/03/2009 Updated: 10/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 945

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in POP Peeper 3.4.0.0 and previous versions allows remote POP3 servers to execute arbitrary code via a long Date header, related to Imap.dll.

Vulnerable Product	Search on Vulmon	Subscribe to Product
poppeeper pop peeper 2.4.3
poppeeper pop peeper
poppeeper pop peeper 3.0.1
poppeeper pop peeper 3.0

## # $Id: poppeeper_uidlrb 11180 2010-11-30 20:19:18Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## class Metasploit3 < Msf ...

#!/usr/bin/perl # KL0309EXP-poppeeper_date-bofpl # 03122009 # Krakow Labs Development [wwwkrakowlabscom] # POP Peeper 3400 Date Remote Buffer Overflow Exploit # # SEH overwrite exploitation, uses Imapdll (included with POP Peeper) for universal # exploitation (more love for no /SafeSEH) Tested on Windows XP SP3 # # rush@KL (Jeremy Brown) ...

## # $Id: poppeeper_daterb 10998 2010-11-11 22:43:22Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## class Metasploit3 < Msf ...

CWE-119 http://www.krakowlabs.com/res/adv/KL0309ADV-poppeeper_date-bof.txt http://www.securityfocus.com/bid/34093 http://secunia.com/advisories/34077 https://exchange.xforce.ibmcloud.com/vulnerabilities/49215 https://www.exploit-db.com/exploits/8203 http://www.securityfocus.com/archive/1/501701/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/16458/

CVE-2009-1029

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect