ID de Prueba:	1.3.6.1.4.1.25623.1.0.10966
Categoría:	Gain a shell remotely
Título:	IMAP4buffer overflow in the BODY command
Resumen:	NOSUMMARY
Descripción:	Description: There is a buffer overflow in the remote imap server which allows an authenticated user to obtain a remote shell. By supplying an overly long tag the the BODY command, an attacker may gain a shell on this host. *** Nessus reports this vulnerability using only *** information that was gathered. Use caution *** when testing without safe checks enabled. Solution : Upgrade to imap-2001a Risk factor : High
Referencia Cruzada:	BugTraq ID: 4713 Common Vulnerability Exposure (CVE) ID: CVE-2002-0379 http://www.securityfocus.com/bid/4713 Bugtraq: 20020510 wu-imap buffer overflow condition (Google Search) http://marc.info/?l=bugtraq&m=102107222100529&w=2 Caldera Security Advisory: CSSA-2002-021.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-021.0.txt CERT/CC vulnerability note: VU#961489 http://www.kb.cert.org/vuls/id/961489 Conectiva Linux advisory: CLA-2002:487 http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000487 En Garde Linux Advisory: ESA-20020607-013 http://www.linuxsecurity.com/advisories/other_advisory-2120.html HPdes Security Advisory: HPSBTL0205-043 http://online.securityfocus.com/advisories/4167 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-034.php http://www.redhat.com/support/errata/RHSA-2002-092.html XForce ISS Database: wuimapd-authenticated-user-bo(10803) https://exchange.xforce.ibmcloud.com/vulnerabilities/10803 http://www.iss.net/security_center/static/9055.php
Copyright	This script is Copyright (C) 2002 Renaud Deraison

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.