Intrusion Prevention

IMAP.Long.Verb.Arguments.Buffer.Overflow

Description

A stack-based buffer overflow in the IMAP daemon in Novell Netmail allows remote attackers to execute arbitrary code via "long verb arguments."

Affected Products

Novell NetMail 3.52 D

Impact

Execute arbitrary code.

Recommended Actions

Novell has released fixes to address this issue:
Novell nm352e_ftf1_lx.tgz
NetMail 3.52e FTF 1 for Linux
http://support.novell.com/servlet/filedownload/sec/ftf/nm352e_ftf1_lx. tgz
Novell nm352e_ftf1_nw.zip
NetMail 3.52e FTF 1 for NetWare
http://support.novell.com/servlet/filedownload/sec/ftf/nm352e_ftf1_nw. zip
Novell nm352e_ftf1_win.zip
NetMail 3.52e FTF 1 for Windows
http://support.novell.com/servlet/filedownload/sec/ftf/nm352e_ftf1_win .zip

CVE References

CVE-2005-3314