 |
Name:
Gld.Postfix.Buffer.Overflow
|
Released Date:
Jun 10 2008
|
Severity:
critical
|
CVE:
2005-1099
|
|
|
Bugtraq:
13129
|
|
|
|
|
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
|
Description
|
This indicates an attempt to exploit a buffer-overflow vulnerability in GLD Postfix.
The vulnerability is caused by an error when the vulnerable software handles a long string passed to the "client_address" property. It allows a remote attacker to execute arbitrary code via sending a crafted packet.
|
|
|
|
Impact
|
|
System Compromise: Remote attackers can gain control of vulnerable systems.
|
|
|
|
Affected Products
|
|
GLD Postfix older than version 1.5.
|
|
Aliases
|
|
References
|
http://www.securityfocus.com/bid/13129
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1099
http://www.milw0rm.com/exploits/934
|
|
Recommended Actions
|
|
Apply the latest update from the vendor.
|
|
