CVE-2005-1758

Novell NetMail < 3.52C - Remote Code Execution via IMAP Command Continuation Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1758. PoCs published by MC, including Metasploit module exploits/windows/imap/novell_netmail_auth.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Novell NetMail 3.52 IMAP AUTHENTICATE GSSAPI command by sending an overly long string to overwrite the buffer and control program execution. It uses a bind or reverse TCP shell payload for reliable exploitation.

Description

Buffer overflow in the IMAP command continuation function in Novell NetMail 3.52 before 3.52C may allow remote attackers to execute arbitrary code.

Exploits (1)

metasploit WORKING POC NORMAL
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/imap/novell_netmail_auth.rb

This Metasploit module exploits a stack buffer overflow in Novell NetMail 3.52 IMAP AUTHENTICATE GSSAPI command by sending an overly long string to overwrite the buffer and control program execution. It uses a bind or reverse TCP shell payload for reliable exploitation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell NetMail 3.52
No auth needed
Prerequisites: Network access to the target IMAP service (port 143)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Patch, Vendor Advisory x_refsource_confirm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971588.htm
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/0727
Patch, Vendor Advisory x_refsource_confirm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971590.htm
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/17239
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15644
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13926
Patch, Vendor Advisory x_refsource_confirm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971591.htm
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/14718

Scores

EPSS 0.1608
EPSS Percentile 96.5%

Details

Status published
Products (4)
novell/netmail 3.0.3a a (2 CPE variants)
novell/netmail 3.1 (2 CPE variants)
novell/netmail 3.5.2 a (3 CPE variants)
novell/netmail 3.10 (9 CPE variants)
Published Jun 08, 2005
Tracked Since Feb 18, 2026