Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1029

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-1029
Last Modified 20 Mar 2009 12:00:00
Published 19 Mar 2009 08:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-1029

Summary

Stack-based buffer overflow in POP Peeper 3.4.0.0 and earlier allows remote POP3 servers to execute arbitrary code via a long Date header, related to Imap.dll.

Vulnerable Systems

Application

  • Poppeeper Pop Peeper 2.4.3

  • Poppeeper Pop Peeper 3.0

  • Poppeeper Pop Peeper 3.0.1

  • Poppeeper Pop Peeper 3.4.0.0


References

XF - poppeeper-date-bo(49215)

BID - 34093

BUGTRAQ - 20090312 POP Peeper 3.4.0.0 Date Remote Buffer Overflow Vulnerability

MILW0RM - 8203

MISC - http://www.krakowlabs.com/res/adv/KL0309ADV-poppeeper_date-bof.txt

SECUNIA - 34077


Last Updated: 27 May 2016 10:50:26