[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] MailEnable v2.37 APPEND exploit

To: mu-b <mu-b@xxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] MailEnable v2.37 APPEND exploit
From: poo <skodliv@xxxxxxxxx>
Date: Sat, 3 Mar 2007 16:04:27 +0100

keep disclosin!

On 3/2/07, mu-b <mu-b@xxxxxxxxxxxxxx> wrote:


Attached is another exploit for the MailEnable Pro/Ent <= 2.37 (including
the
latest). The vulnerability is a bog-standard stack based overflow in the
call at offset 0x00417CD6 (MEIMAPS.exe, v2.37).


---------------------------------------------------------------------------
(mu-b@xxxxxxxxxxxxxx)



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



--
smile tomorrow will be worse

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] MailEnable v2.37 APPEND exploit
  - From: mu-b

Prev by Date: Re: [Full-disclosure] Woltlab Burning Board (wbb) 2.3.6 CSRF/XSS - 0day
Next by Date: [Full-disclosure] Tyger Bug Tracking System Multiple Vulnerability
Previous by thread: Re: [Full-disclosure] MailEnable v2.37 APPEND exploit
Next by thread: [Full-disclosure] ZDI-07-008: Apache Tomcat JK Web Server Connector Long URL Stack Overflow Vulnerability
Index(es):
- Date
- Thread