CVE-2008-3606

Description

Heap-based buffer overflow in the IMAP service in Qbik WinGate 6.2.2.1137 and earlier allows remote authenticated users to cause a denial of service (resource exhaustion) or possibly execute arbitrary code via a long argument to the LIST command. NOTE: some of these details are obtained from third party information.

Affected products

qbik / wingate6.2.2
qbik / wingate2.0 – 2.0
qbik / wingate2.1 – 2.1
qbik / wingate3.0 – 3.0
qbik / wingate3.0.5 – 3.0.5
qbik / wingate4.0.1 – 4.0.1
qbik / wingate4.1 – 4.1
qbik / wingate4.1.0 – 4.1.0
qbik / wingate4.1.1 – 4.1.1
qbik / wingate4.2.0 – 4.2.0
qbik / wingate4.3.0 – 4.3.0
qbik / wingate4.3.0 – 4.3.0
qbik / wingate4.3.0 – 4.3.0
qbik / wingate4.4.0 – 4.4.0
qbik / wingate4.4.0 – 4.4.0
qbik / wingate4.4.1 – 4.4.1
qbik / wingate4.4.2 – 4.4.2
qbik / wingate4.5.0 – 4.5.0
qbik / wingate4.5.0 – 4.5.0
qbik / wingate4.5.1 – 4.5.1
qbik / wingate4.5.2 – 4.5.2
qbik / wingate5.0 – 5.0
qbik / wingate5.0.0 – 5.0.0
qbik / wingate5.0.1 – 5.0.1
qbik / wingate5.0.1.766 – 5.0.1.766
qbik / wingate5.0.5 – 5.0.5
qbik / wingate5.1 – 5.1
qbik / wingate5.2 – 5.2
qbik / wingate5.2.2 – 5.2.2
qbik / wingate5.2.3 – 5.2.3
qbik / wingate6.0 – 6.0
qbik / wingate6.0.0.984 – 6.0.0.984
qbik / wingate6.0.1.993 – 6.0.1.993
qbik / wingate6.0.1.995 – 6.0.1.995
qbik / wingate6.0.2.1000 – 6.0.2.1000
qbik / wingate6.0.2.1001 – 6.0.2.1001
qbik / wingate6.0.3.1005 – 6.0.3.1005
qbik / wingate6.0.4.1025 – 6.0.4.1025
qbik / wingate6.1.1.1077 – 6.1.1.1077
qbik / wingate6.1.2.1094 – 6.1.2.1094
qbik / wingate6.1.3.1096 – 6.1.3.1096
qbik / wingate6.1.4 – 6.1.4
qbik / wingate6.2.1 – 6.2.1
qbik / wingate6.2.2.1137 – 6.2.2.1137

Description

Affected products

References