• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

SoftiaCom WMailserver Remote Buffer Overflow Vulnerability

SoftiaCom WMailserver contains a remote buffer-overflow vulnerability in its connection-handling code. This issue is due to the application's failure to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

If an attacker can connect to the SMTP service and send an excessive chunk of data, arbitrary machine code execution is possible. Failed exploitation attempts may result in crashing the application.