Computalynx CMail Web Interface Buffer Overflow Vulnerability

The Web Interface of ComputaLynx CMail 2.4.7 (and possibly earlier versions) resides on port 8002 by default and is vulnerable to a buffer overflow attack which could allow for the execution of arbitrary code. Connecting to the port the service resides on and sending a GET request of 428 bytes + EIP (4 bytes) will overwrite the EIP.


 

Privacy Statement
Copyright 2010, SecurityFocus