PT-2005-4397 · Ftgate · Ftgate4

Luca Ercoli

Published

2005-11-16

Updated

2017-07-11

CVE-2005-3640

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions FTGate4 version 4.1

Description The issue concerns multiple buffer overflows in the IMAP Groupware Mail server of FTGate4. Remote attackers can execute arbitrary code by providing long arguments to various IMAP commands. This has been demonstrated using the EXAMINE command.

Recommendations For FTGate4 version 4.1, update to a version that addresses the buffer overflow issues in the IMAP Groupware Mail server to prevent remote code execution.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2005-3640

Affected Products

Ftgate4

PT-2005-4397 · Ftgate · Ftgate4

CVE-2005-3640

Weakness Enumeration

Related Identifiers

Affected Products

References · 9