CVE-2008-1497: Buffer Overflow
First published: Tue Mar 25 2008(Updated: )
Stack-based buffer overflow in the IMAP service in NetWin SurgeMail 38k4-4 and earlier allows remote authenticated users to execute arbitrary code via long arguments to the LSUB command.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NetWin SurgeMail | =3.6f7 | |
| NetWin SurgeMail | =3.0c2 | |
| NetWin SurgeMail | =2.2a6 | |
| NetWin SurgeMail | =3.7b | |
| NetWin SurgeMail | =3.8d | |
| NetWin SurgeMail | =2.0g2 | |
| NetWin SurgeMail | =3.8b | |
| NetWin SurgeMail | =3.7b8 | |
| NetWin SurgeMail | =3.8i3 | |
| NetWin SurgeMail | =2.0e | |
| NetWin SurgeMail | =3.8a | |
| NetWin SurgeMail | =3.5b3 | |
| NetWin SurgeMail | =3.8k3 | |
| NetWin SurgeMail | =3.7b6 | |
| NetWin SurgeMail | =2.0c | |
| NetWin SurgeMail | =2.2g2 | |
| NetWin SurgeMail | =3.8f2 | |
| NetWin SurgeMail | =3.8m | |
| NetWin SurgeMail | =3.7b3 | |
| NetWin SurgeMail | =3.8f | |
| NetWin SurgeMail | =3.2e | |
| NetWin SurgeMail | =2.2c10 | |
| NetWin SurgeMail | =3.6d | |
| NetWin SurgeMail | =2.2g3 | |
| NetWin SurgeMail | =3.7b7 | |
| NetWin SurgeMail | =1.8g3 | |
| NetWin SurgeMail | =3.8i2 | |
| NetWin SurgeMail | =3.6f5 | |
| NetWin SurgeMail | =2.0a2 | |
| NetWin SurgeMail | =3.8i | |
| NetWin SurgeMail | =3.7b5 | |
| NetWin SurgeMail | =3.8k | |
| NetWin SurgeMail | =2.1c7 | |
| NetWin SurgeMail | =3.8f3 | |
| NetWin SurgeMail | =3.8k2 | |
| NetWin SurgeMail | =3.5a | |
| NetWin SurgeMail | =1.9b2 | |
| NetWin SurgeMail | =3.0a | |
| NetWin SurgeMail | =3.6f3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.infigo.hr/en/in_focus/advisories/INFIGO-2008-03-07
- http://www.netwinsite.com/surgemail/help/updates.htm
- http://www.securityfocus.com/bid/28377
- http://secunia.com/advisories/29105
- http://securityreason.com/securityalert/3774
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41402
- http://www.securityfocus.com/archive/1/489959/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/event
- agent/type
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/netwin
- canonical/netwin surgemail
- version/netwin surgemail/3.6f7
- version/netwin surgemail/3.0c2
- version/netwin surgemail/2.2a6
- version/netwin surgemail/3.7b
- version/netwin surgemail/3.8d
- version/netwin surgemail/2.0g2
- version/netwin surgemail/3.8b
- version/netwin surgemail/3.7b8
- version/netwin surgemail/3.8i3
- version/netwin surgemail/2.0e
- version/netwin surgemail/3.8a
- version/netwin surgemail/3.5b3
- version/netwin surgemail/3.8k3
- version/netwin surgemail/3.7b6
- version/netwin surgemail/2.0c
- version/netwin surgemail/2.2g2
- version/netwin surgemail/3.8f2
- version/netwin surgemail/3.8m
- version/netwin surgemail/3.7b3
- version/netwin surgemail/3.8f
- version/netwin surgemail/3.2e
- version/netwin surgemail/2.2c10
- version/netwin surgemail/3.6d
- version/netwin surgemail/2.2g3
- version/netwin surgemail/3.7b7
- version/netwin surgemail/1.8g3
- version/netwin surgemail/3.8i2
- version/netwin surgemail/3.6f5
- version/netwin surgemail/2.0a2
- version/netwin surgemail/3.8i
- version/netwin surgemail/3.7b5
- version/netwin surgemail/3.8k
- version/netwin surgemail/2.1c7
- version/netwin surgemail/3.8f3
- version/netwin surgemail/3.8k2
- version/netwin surgemail/3.5a
- version/netwin surgemail/1.9b2
- version/netwin surgemail/3.0a
- version/netwin surgemail/3.6f3