|
|
Info |
Last Modified |
| about 1 year ago |
|
|
|
|
|
Description |
The MDaemon mail server contains a flaw in a CGI application called 'Form2Raw.exe'. This CGI is used to send raw email messages through the HTTP protocol. A stack overflow condition can be triggered in this application by sending a request which contains a From parameter of more than 153 bytes. This overflow can be exploited remote by an unauthenticated attacker to execute arbitrary code in the context of the MDaemon service (normally LocalSystem).
|
|
Classification |
Attack Type:
Input Manipulation
|
|
Technical |
The MDaemon mail server features a web service which listens on TCP port 3000.
|
|
Solution |
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s):
Remove the following two lines from the configuration file located at \MDaemon\WorldClient\WorldClient.ini:
CgiBase2=/Form2Raw.cgi
CgiFile2=C:\MDaemon\CGI\Form2Raw.exe
MDaemon must be restarted to activate these changes.
|
|
Products |
|
MDaemon
 |
6.5.2 |
6.8.5 |
|
|
|
|
|
|
|
Credit |
Unknown or Incomplete
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
