APP: IA WebMail Server Long GET Request Buffer Overrun

This signature detects attempts to exploit a known flaw in IA WebMail. A successful attack could result in arbitrary code execution.

Extended Description

IA WebMail Server is said to be prone to a remote buffer overrun that could allow an attacker to execute arbitrary code. The problem occurs due to insufficient bounds checking when handling GET requests. As a result, an attacker may be capable of overrunning the bounds of an internal memory buffer and effectively control the flow of execution.

Affected Products

True_north_software ia_webmail_server

References

BugTraq: 8965

CVE: CVE-2003-1192

Short Name
APP:IA-WEBMAIL-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2003-1192 GET IA Long Overrun Request Server WebMail bid:8965
Release Date
11/10/2011
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
False Positive
Unknown
Vendors

True_north_software

CVSS Score

10.0

Found a potential security threat?