Vulnerabilities > CVE-2005-1903 - Local Security vulnerability in SPA-PRO Mail

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

e-post-corporation

exploit available

NVD

Published: 2005-06-02

Updated: 2017-07-11

Summary

Buffer overflow in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to execute arbitrary code via a long CREATE command.

Vulnerable Configurations

Part	Description	Count
Application	E-Post_Corporation E Post Corporation SPA PRO Mail Atsolomon 4.00	1

Exploit-Db

description	e-Post SPA-PRO 4.01 (imap) Remote Buffer Overflow Exploit. CVE-2005-1903. Remote exploit for windows platform
id	EDB-ID:1026
last seen	2016-01-31
modified	2005-06-02
published	2005-06-02
reporter	Jerome Athias
source	https://www.exploit-db.com/download/1026/
title	e-Post SPA-PRO 4.01 imap Remote Buffer Overflow Exploit

References

http://secunia.com/advisories/15573
http://securitytracker.com/id?1014095
http://www.osvdb.org/16990
http://www.security.org.sg/vuln/spa-promail4.html
http://www.vupen.com/english/advisories/2005/0680
https://exchange.xforce.ibmcloud.com/vulnerabilities/20862