SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Your Ad Here
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Application (Generic)  >  WinGate Vendors:  Qbik IP Management Limited
WinGate IMAP Service Lets Remote Authenticated Users Deny Service
SecurityTracker Alert ID:  1020644
SecurityTracker URL:  http://securitytracker.com/id?1020644
CVE Reference:  CVE-2008-3606   (Links to External Site)
Updated:  Aug 15 2008
Original Entry Date:  Aug 8 2008
Impact:  Denial of service via network
Exploit Included:  Yes  
Version(s): 6.2.2
Description:  A vulnerability was reported in WinGate. A remote authenticated user can cause denial of service conditions.

A remote authenticated user can send a specially crafted LIST command to cause the target service to prevent additional IMAP connections.

A demonstration exploit is provided:

A01 LOGIN <user> <password>
A02 LIST Ax1000 *

The vendor has been notified.

Joao Antunes reported this vulnerability.
Impact:  A remote authenticated user can prevent the target IMAP service from accepting IMAP connections.
Solution:  No solution was available at the time of this entry.
Vendor URL:  www.wingate.com/ (Links to External Site)
Cause:  Resource error
Underlying OS:  Windows (Any)
Reported By:  Joao Antunes <jantunes@di.fc.ul.pt>
Message History:   None.

 Source Message Contents
Date:  Fri, 8 Aug 2008 15:16:08 +0100
From:  =?ISO-8859-1?Q?Jo=E3o_Antunes?= <jantunes@di.fc.ul.pt>
Subject:  [AJECT] WinGate Email Server (IMAP) vulnerability

 
----------------------------------------
Synopsis
----------------------------------------
WinGate is vulnerable to denial-of-service (DoS) attacks caused  
probably by a resource exhaustion vulnerability.
The IMAP server ceases to provide access to its clients after  
processing a LIST command with a large parameter (see details bellow).

Product: WinGate
Version: 6.2.2 and probably the older versions
Vendor: Qbik (www.wingate.com)
Type: Denial-of-service
Risk: service disruption
Remote: Yes
Discovered by: Joćo Antunes (AJECT -- Attack Injection Tool) on 14/May/ 
2008
Exploit: Not Available
Solution: Not Available
Status: Developers were contacted several times since the  
vulnerability was discovered.


----------------------------------------
Vulnerability Description
----------------------------------------
The vulnerability can be triggered by sending the following messages  
to the imap server:
A01 LOGIN <user> <password>
A02 LIST Ax1000 *

Depending on the server's resources, it may be required to repeat the  
above exploit to deplete its resources. (in a 512MB RAM configuration,  
the exploit was executed twice)
The above exploit caused the server to reject all subsequent  
connections with a "NO access denied" reply thus resulting in a remote  
denial of service.


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2007, SecurityGlobal.net LLC