MailEnable POP Service PASS Command Remote Buffer Overflow Vulnerability

MailEnable POP Service PASS Command Remote Buffer Overflow Vulnerability

MailEnable is prone to a stack-based buffer-overflow vulnerability in the POP service because the application fails to properly bounds-check user-supplied data.

A successful exploit may allow remote attackers to execute arbitrary code in the context of the vulnerable server. Failed exploit attempts will likely result in denial-of-service conditions.

This issue affects version 2.35 of the Professional and Enterprise Editions; other versions may be vulnerable.