CodeBlue SMTP Response Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

CodeBlue SMTP Response Buffer Overflow Vulnerability

CodeBlue is an Apache httpd log scanning utility that attempts to contact the administrators of hosts infected with worms.

A buffer overflow vulnerability has been reported in CodeBlue. The condition occurs when processing responses from SMTP servers. It may be possible for malicious SMTP servers to execute shellcode on hosts running CodeBlue.