Bugtraq: [AJECT] Softalk IMAP Server 8.5.1 DoS vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

[AJECT] Softalk IMAP Server 8.5.1 DoS vulnerability

From: João Antunes <jantunes () di fc ul pt>
Date: Tue, 2 Sep 2008 16:07:53 +0100

----------------------------------------
Synopsis
----------------------------------------

Softalk IMAP Server 8.5.1 is vulnerable to denial-of-service (DoS)attacks.The IMAP server crashes when processing an APPEND command with astrange parameter (see details bellow). Other commands may alsotrigger the same behavior.


Product: Softalk Mail Server
Version: 8.5.1.431 and probably the older versions
Vendor: Softalk (www.softalkltd.com)
Type: Denial-of-service
Risk: service disruption
Remote: Yes

Discovered by: João Antunes (AJECT -- Attack Injection Tool) on 05/Jun/2008

Exploit: Not Available
Solution: Not Available

Status: Developers were contacted and should be releasing a correctedversion soon (8.5.2 beta 2)


----------------------------------------
Vulnerability Description
----------------------------------------

The vulnerability can be triggered by sending the following messagesto the imap server:

A001 LOGIN user password
A01 APPEND Ax5000 (UIDNEXT MESSAGES) (…) Ax5000 (UIDNEXT MESSAGES)

For the sake of legibility, the APPEND command was presented above ina condensed form.The "(...)" means that the parameters should be repeated several timesin the same command (e.g., ten times). Successful exploitation resultsin a remote denial of service.

By Date By Thread

Current thread:

[AJECT] Softalk IMAP Server 8.5.1 DoS vulnerability João Antunes (Sep 02)