Vulnerabilities > CVE-2004-1558 - Unspecified vulnerability in Ypops

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
ypops
exploit available
metasploit

Summary

Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) POP3 USER command or (2) SMTP request.

Exploit-Db

  • descriptionYPOPS 0.6 Buffer Overflow. CVE-2004-1558. Remote exploit for windows platform
    idEDB-ID:16818
    last seen2016-02-02
    modified2010-05-09
    published2010-05-09
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16818/
    titleYPOPS 0.6 - Buffer Overflow
  • descriptionYahooPOPs <= 1.6 SMTP Port Buffer Overflow Exploit. CVE-2004-1558. Remote exploit for windows platform
    idEDB-ID:577
    last seen2016-01-31
    modified2004-10-15
    published2004-10-15
    reporterclass101
    sourcehttps://www.exploit-db.com/download/577/
    titleYahooPOPs <= 1.6 SMTP Port Buffer Overflow Exploit
  • descriptionYahooPOPs <= 1.6 SMTP Remote Buffer Overflow Exploit. CVE-2004-1558. Remote exploit for windows platform
    idEDB-ID:582
    last seen2016-01-31
    modified2004-10-18
    published2004-10-18
    reporterDiabolic Crab
    sourcehttps://www.exploit-db.com/download/582/
    titleYahooPOPs <= 1.6 SMTP Remote Buffer Overflow Exploit

Metasploit

descriptionThis module exploits a stack buffer overflow in the YPOPS POP3 service. This is a classic stack buffer overflow for YPOPS version 0.6. Possibly Affected version 0.5, 0.4.5.1, 0.4.5. Eip point to jmp ebx opcode in ws_32.dll
idMSF:EXPLOIT/WINDOWS/SMTP/YPOPS_OVERFLOW1
last seen2020-05-23
modified2017-07-24
published2006-10-12
references
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/smtp/ypops_overflow1.rb
titleYPOPS 0.6 Buffer Overflow

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/83157/ypops_overflow1.rb.txt
idPACKETSTORM:83157
last seen2016-12-05
published2009-11-26
reporteracaro
sourcehttps://packetstormsecurity.com/files/83157/YPOPS-0.6-Buffer-Overflow.html
titleYPOPS 0.6 Buffer Overflow