eXtremail Multiple Remote Buffer Overflow Vulnerabilities

eXtremail is prone to an integer-underflow vulnerability and multiple remote buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input.

Attackers can exploit these issues to execute arbitrary code with superuser privileges or to cause denial-of-service conditions. Successful attacks will completely compromise affected computers or will deny access to legitimate users.

These issues affect eXtremail 2.1.0 and 2.1.1; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus