Vulnerability Note VU#972334
IMail Server LDAP daemon buffer overflow
A buffer overflow flaw exists in the way that the Lightweight Directory Access Protocol (LDAP) server included with the IMail Server handles messages with overly long tags. This results in a vulnerability that can be exploited by a remote attacker who has the ability to supply a specially crafted message to the server.
NOTE: The CERT/CC is aware of publicly available exploit code for this vulnerability and has received reports of active reconnaissance for, and exploitation of, vulnerable systems.
A remote attacker may be able to execute arbitrary code in the context of Administrator on vulnerable systems running Windows 2000 or Windows XP. Furthermore, successful exploitation has been reported to cause the LDAP service to crash, resulting in a denial-of-service condition.
Apply a patch from the vendor
Filter network traffic for the LDAP service
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Ipswitch Inc.||Affected||-||23 Feb 2004|
CVSS Metrics (Learn More)
Thanks to iDefense Labs for reporting this vulnerability.
This document was written by Chad R Dougherty.
- CVE IDs: Unknown
- Date Public: 17 Feb 2004
- Date First Published: 23 Feb 2004
- Date Last Updated: 19 Mar 2004
- Severity Metric: 38.48
- Document Revision: 11
If you have feedback, comments, or additional information about this vulnerability, please send us email.