CVE-2002-1076

Ipswitch IMail - Buffer Overflow via Long HTTP GET Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1076. PoCs published by anonymous.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in IPSwitch IMail 7.11's Web Messaging daemon via a malformed HTTP/1.0 request. It leverages a dynamic payload execution technique to achieve remote code execution with SYSTEM privileges.

Description

Buffer overflow in the Web Messaging daemon for Ipswitch IMail before 7.12 allows remote attackers to execute arbitrary code via a long HTTP GET request for HTTP/1.0.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · cremotewindows

https://www.exploit-db.com/exploits/21654

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in IPSwitch IMail 7.11's Web Messaging daemon via a malformed HTTP/1.0 request. It leverages a dynamic payload execution technique to achieve remote code execution with SYSTEM privileges.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: IPSwitch IMail 7.11

No auth needed

Prerequisites: Network access to the IMail Web Messaging port (default 8383) · Target running IPSwitch IMail 7.11

MITRE ATT&CK