cve/CVE-2005-1513.md at 7818c5651982aa78500b326433f643b6a96ab8c1

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.

POC

Reference

http://packetstormsecurity.com/files/157805/Qualys-Security-Advisory-Qmail-Remote-Code-Execution.html
http://packetstormsecurity.com/files/158203/Qmail-Local-Privilege-Escalation-Remote-Code-Execution.html
http://packetstormsecurity.com/files/172804/RenderDoc-1.26-Local-Privilege-Escalation-Remote-Code-Execution.html
http://seclists.org/fulldisclosure/2020/May/42
http://seclists.org/fulldisclosure/2023/Jun/2
http://www.openwall.com/lists/oss-security/2020/05/19/8
http://www.openwall.com/lists/oss-security/2023/06/06/3

Github

https://github.com/alphaSeclab/sec-daily-2020
https://github.com/mdulin2/house-of-muney
https://github.com/sagredo-dev/qmail

1.3 KiB Raw Blame History

CVE-2005-1513

Description

POC

Reference

Github

1.3 KiB

Raw Blame History