CVE-2003-1192

Truenorth Software IA Webmail Server - Buffer Overflow

Title source: rule

Description

Stack-based buffer overflow in IA WebMail Server 3.1.0 allows remote attackers to execute arbitrary code via a long GET request.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16767

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Peter Winter-Smith · perlremotewindows

https://www.exploit-db.com/exploits/124

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Peter Winter-Smith · perlremotewindows

https://www.exploit-db.com/exploits/23334

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by hdm · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ia_webmail.rb

View Code ZIP pw:eip

References (8)

[Vendor Advisory] http://secunia.com/advisories/10107

[Exploit] http://www.derkeiler.com/Mailing-Lists/VulnWatch/2003-11/0001.html

[Various Sources] http://www.elitehaven.net/iawebmail.txt

[Vendor Advisory] http://www.osvdb.org/2757

[Exploit] http://www.securiteam.com/windowsntfocus/6B002158UQ.html

[Exploit] http://www.securityfocus.com/bid/8965

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/13580

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1008075

Scores

EPSS 0.8215

EPSS Percentile 99.2%

Details

Status published

Products (2)

truenorth_software/ia_webmail_server 3.0

truenorth_software/ia_webmail_server 3.1

Published Nov 03, 2003

Tracked Since Feb 18, 2026