Alias(es)IA.Webmail.Server.Stack.Overflow.B |
Release DateSep 16, 2005 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates a possible exploit of a buffer-overflow vulnerability in the IA WebMail Server.This vulnerability is caused by an error when the vulnerable software handles a maliciously crafted HTTP GET request. It allows remote attackers to execute arbitrary code by sending a specially crafted HTTP request. |
Affected ProductsTrue North Software IA WebMail Server 3.1 and 3.0 |
Recommended ActionsApply the appropriate patch from the vendor if available. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2003-1192 |
Reference/shttp://www.securityfocus.com/bid/8965 (BugTraq) |
