<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Bugtraq: Re: IA WebMail 3.x PoC Code

Re: IA WebMail 3.x PoC Code

From: Peter Winter-Smith <peter4020_at_hotmail.com>
Date: 19 Nov 2003 14:49:41 -0000

('binary' encoding is not supported, stored as-is) Hello again,

I'm afraid that I have had a couple of reports which state that the
Proof of Concept code which I have written for IA WebMail does not work.

This is often due to the fact that I close the socket immediately as the
malicious data is sent, and so the server does not follow the sequence
of events needed to execute the code.

Please would you either insert a:

  sleep(5);

Before the line:

  close($victim);

This should solve the problem.

The new code can be downloaded intact from:
  http://www.elitehaven.net/iawebmail.pl

Thank you for reading this,
-Peter Winter-Smith
Received on Nov 19 2003

This message: [ Message body ]
Next message: Davide Del Vecchio: "HPUX dtmailpr buffer overflow vulnerability"
Previous message: Peter Winter-Smith: "IA WebMail 3.x PoC"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]