• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

GoodTech SMTP Server RCPT TO Multiple Remote Buffer Overflow Vulnerabilities

GoodTech SMTP Server is susceptible to two remote buffer overflow vulnerabilities when handling RCPT TO commands. This issue is due to a failure of the application to properly bounds check user-supplied data prior to copying it to fixed size memory buffers.

These vulnerabilities allow remote attackers to execute arbitrary machine code with System level privileges in the context of the affected application.