CVE-2003-1200

Alt-n Mdaemon - Buffer Overflow

Title source: rule

Description

Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16812

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Rosiello Security · cremotewindows

https://www.exploit-db.com/exploits/23502

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Behrang Fouladi · cdoswindows

https://www.exploit-db.com/exploits/23501

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by aushack · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/mdaemon_worldclient_form2raw.rb

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/14097

[Exploit, Vendor Advisory] http://www.osvdb.org/3255

[Various Sources] http://hat-squad.com/bugreport/mdaemon-raw.txt

[Vendor Advisory] http://secunia.com/advisories/10512

[Exploit, Vendor Advisory] http://www.securityfocus.com/archive/1/348454

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/9317

[Mailing List] http://marc.info/?l=bugtraq&m=107936753929354&w=2

Scores

EPSS 0.5989

EPSS Percentile 98.3%

Details

Status published

Products (9)

alt-n/mdaemon 6.5.2

alt-n/mdaemon 6.7.5

alt-n/mdaemon 6.7.9

alt-n/mdaemon 6.8.0

alt-n/mdaemon 6.8.1

alt-n/mdaemon 6.8.2

alt-n/mdaemon 6.8.3

alt-n/mdaemon 6.8.4

alt-n/mdaemon 6.8.5

Published Dec 29, 2003

Tracked Since Feb 18, 2026