CVE-2003-0263
published 2003-05-27CVE-2003-0263: Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2)…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
11.56%
95.5th percentile
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| floosietek | ftgatepro | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
FloosieTek FTGate PRO 1.22 - SMTP RCPT TO Buffer Overflow
exploitdb·2003-05-06
CVE-2003-0263 FloosieTek FTGate PRO 1.22 - SMTP RCPT TO Buffer Overflow
FloosieTek FTGate PRO 1.22 - SMTP RCPT TO Buffer Overflow
---
source: https://www.securityfocus.com/bid/7508/info
A buffer overflow vulnerability has been reported for Floosietek FTGate PRO mail server. The vulnerability exists when the mail server attempts to process overly long SMTP 'Rcpt To' arguments. Due to the nature of this vulnerability it may be exploited to execute attacker-supplied code with the privileges of the SYSTEM user.
This vulnerability was reported for FTGate PRO 1.22 Hotfix(1328). It is likely that previous versions are also affected.
#!/usr/bin/perl -w
##################
# FTGate Pro Mail Server v. 1.22 (1328) DoS attack
#
# URL: http://www.infowarfare.dk/
# EMAIL: [email protected]
# USAGE: sploit.pl
#
# Summary:
#
# The problem is a Buffer Overflow in the SMTP
Exploit-DB
FloosieTek FTGate PRO 1.22 - SMTP MAIL FROM Buffer Overflow
exploitdb·2003-05-06
CVE-2003-0263 FloosieTek FTGate PRO 1.22 - SMTP MAIL FROM Buffer Overflow
FloosieTek FTGate PRO 1.22 - SMTP MAIL FROM Buffer Overflow
---
source: https://www.securityfocus.com/bid/7506/info
A buffer overflow vulnerability has been reported for Floosietek FTGate PRO mail server. The vulnerability exists when the mail server attempts to process overly long SMTP 'Mail From' arguments. Due to the nature of this vulnerability it may be exploited to execute attacker-supplied code with the privileges of the SYSTEM user.
This vulnerability was reported for FTGate PRO 1.22 Hotfix(1328). It is likely that previous versions are also affected.
#!/usr/bin/perl -w
##################
# FTGate Pro Mail Server v. 1.22 (1328) DoS attack
#
# URL: http://www.infowarfare.dk/
# EMAIL: [email protected]
# USAGE: sploit.pl
#
# Summary:
#
# The problem is a Buffer Overflow in the
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0052.htmlhttp://marc.info/?l=bugtraq&m=105223471822836&w=2http://www.securityfocus.com/bid/7506http://www.securityfocus.com/bid/7508https://exchange.xforce.ibmcloud.com/vulnerabilities/11951http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0052.htmlhttp://marc.info/?l=bugtraq&m=105223471822836&w=2http://www.securityfocus.com/bid/7506http://www.securityfocus.com/bid/7508https://exchange.xforce.ibmcloud.com/vulnerabilities/11951
2003-05-27
Published