CVE-2008-1358
50Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 57%
from disclosure to weapon820 days
Published on NVDMar 17
1st PoC+820d
metasploitMar 13
exploitation probability
57%top 1% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
Stack-based buffer overflow in the IMAP server in Alt-N Technologies MDaemon 9.6.4 allows remote authenticated users to execute arbitrary code via a FETCH command with a long BODY.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/16482unverifiedcve_referencewww.exploit-db.com/exploits/5248unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://files.altn.com/MDaemon/Release/RelNotes_en.txthttp://secunia.com/advisories/29382https://exchange.xforce.ibmcloud.com/vulnerabilities/41195https://www.exploit-db.com/exploits/5248http://www.be4mind.com/?q=node/256http://www.securityfocus.com/bid/28245http://www.securitytracker.com/id?1019615http://www.vupen.com/english/advisories/2008/0877/references