CVE-2006-3925
published 2006-07-28CVE-2006-3925: Stack-based buffer overflow in ITIRecorder.MicRecorder ActiveX control in iarecord.dll in InterActual Player before 2.6 allows remote attackers to execute…
PriorityP423medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
2.72%
84.2th percentile
Stack-based buffer overflow in ITIRecorder.MicRecorder ActiveX control in iarecord.dll in InterActual Player before 2.6 allows remote attackers to execute arbitrary code via a long argument to the Files method. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| interactual_technologies | interactual_player | <= 2.60.12.0201 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Ipswitch IMail Server - IMAP SEARCH Buffer Overflow (Metasploit)
exploitdb·2010-06-15
CVE-2007-3925 Ipswitch IMail Server - IMAP SEARCH Buffer Overflow (Metasploit)
Ipswitch IMail Server - IMAP SEARCH Buffer Overflow (Metasploit)
---
##
# $Id: ipswitch_search.rb 9525 2010-06-15 07:18:08Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Ipswitch IMail IMAP SEARCH Buffer Overflow',
'Description' => %q{
This module exploits a stack buffer overflow in Ipswitch IMail Server 2006.1 IMAP SEARCH
verb. By sending an overly long string, an attacker can overwrite the
buffer and control program execution.
In order for this module to be successful, the IMAP user must have at least one
message.
},
'Author' =>
Exploit-DB
IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow
exploitdb·2007-07-25
CVE-2007-3925 IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow
IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow
---
#!/use/bin/perl
#
# Ipswitch IMail Server 2006 IMAP SEARCH COMMAND Stack Overflow Exploit
# Author: ZhenHan.Liu#ph4nt0m.org
# Date: 2007-07-25
# Team: Ph4nt0m Security Team (http://www.ph4nt0m.org)
#
# Vuln Found by: Manuel Santamarina Suarez
# http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
#
# The Vuln code is here (imap4d32.exe version 6.8.8.1)
# 00418CCA |. 8B8D 28EFFFFF |MOV ECX,DWORD PTR SS:[EBP-10D8]
# 00418CD0 |. 0FBE11 |MOVSX EDX,BYTE PTR DS:[ECX]
# 00418CD3 |. 83FA 22 |CMP EDX,22
# 00418CD6 |. 75 2A |JNZ SHORT IMAP4D32.00418D02
# 00418CD8 |. 8B85 28EFFFFF |MOV EAX,DWORD PTR SS:[EBP-10D8]
# 00418CDE |. 50 |PUSH EAX ; /String
# 00418CDF |. FF15 84004300 |CALL DWORD PTR DS:[>; \lstrlenA
# 00418C
No writeups or analysis indexed.
http://secunia.com/advisories/20845http://www.securityfocus.com/bid/19205http://www.vupen.com/english/advisories/2006/3016https://exchange.xforce.ibmcloud.com/vulnerabilities/28055http://secunia.com/advisories/20845http://www.securityfocus.com/bid/19205http://www.vupen.com/english/advisories/2006/3016https://exchange.xforce.ibmcloud.com/vulnerabilities/28055
2006-07-28
Published