Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in Kerio MailServer 5.6.3 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a long showuser parameter in the do_subscribe module, (2) a long folder parameter in the add_acl module, (3) a long folder parameter in the list module, and (4) a long user parameter in the do_map module.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kerio MailServer远程用户名缓冲区溢出漏洞
Vulnerability Description
Kerio MailServer服务程序支持IMAP、POP3、Smtp和SSL协议,并且包括WEBMAIL。 Kerio MailServer的WEBMAIL在处理用户名时缺少正确的边界缓冲区检查,远程攻击者可以用这个漏洞可能以Kerio MailServer进程权限在系统上执行任意指令。 多个脚本在处理超长用户名时没有进行缓冲区检查,这些脚本包括: do_subscribe、add_acl、list、do_map。 在用户名字段提交超长字符串,可触发缓冲区溢出,精心构建提交数据可能以Kerio Mai
CVSS Information
N/A
Vulnerability Type
N/A