Description
Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest).
Affected products
References
- MISChttp://www.osvdb.org/4129
- MISChttp://securitytracker.com/id?1009279
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/15314
- VENDOR_ADVISORYhttp://www.digiti.be/jeffosz/advisories/1stclasspop3.txt
- MISChttp://www.securityfocus.com/bid/9794
- VENDOR_ADVISORYhttp://secunia.com/advisories/11029
- VENDOR_ADVISORYhttp://www.zone-h.org/advisories/read/id=4047