scip AG

NASLDB: Kerio WebMail < 5.7.7 Multiple Vulnerabilities

General

ID: 11763
Name: Kerio WebMail < 5.7.7 Multiple Vulnerabilities

Summary: Checks for Kerio MailServer

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: CVSS2#E:H/RL:U/RC:ND

Port: 80
Family: CGI abuses
Type: Remote

Description

The remote host is running version 5 of the Kerio MailServer.

There are multiple flaws in this interface that could allow
an attacker with a valid webmail account on this host
to obtain a shell on this host or to perform
a cross-site-scripting attack against this host
with a version prior to 5.6.4.

Versions of MailServer prior to 5.6.5 are also prone to a
denial of service condition when an incorrect login to the
admin console occurs. This could cause the server to crash.

Versions of MailServer prior to 5.7.7 are prone to a remotely
exploitable buffer overrun condition. This vulnerability exists in the
spam filter component. If successfully exploited, this could permit
remote attackers to execute arbitrary code in the context of the
MailServer software. This could also cause a denial of service in the
server.

• This might be a false positive, as Nessus did not have
  
• the proper credentials to determine if the remote Kerio
  
• is affected by this flaw.
  

Exploiting

Exploit Available: True
Exploitability Ease: No exploit is required

Sources

CVE: CVE-2002-1434
OSVDB: –
Bugtraq: 5507
scipID: –

Timeline

Vulnerability Disclosure: 2002/08/19
Patch Release: –
Plugin Release: 2003/06/18

Plugin

Version: 1.25
Filename: kerio_webmail_multiple_flaws.nasl
Filesize: 3055 bytes
MD5 Hash: 0901a3e068fd676df842f99890501d1d

Identification: –
Require Keys: –
Dependencies: "find_service1.nasl", "http_version.nasl"

Copyright: This script is Copyright© 2003-2012 Tenable Network Security, Inc.

Letzte Plugins

• Letzte Plugins
  • USN-1611-1 : thunderbird vulnerabilities
  • USN-1610-1 : linux vulnerability
  • USN-1609-1 : linux-ti-omap4 vulnerability
  • SuSE 10 Security Update : PostgreSQL
  • RHSA-2012-1364: bind97
  • RHSA-2012-1363: bind
  • RHSA-2012-1362: thunderbird
  • RHSA-2012-1361: xulrunner
  • Mandriva Linux Security Advisory : graphicsmagick
  • FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack

• Archiv
• scip VulDB
• Syndication
  • RSS
  • Twitter