CVE-2005-3314

Novell Netmail - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in the IMAP daemon in Novell Netmail 3.5.2 allows remote attackers to execute arbitrary code via "long verb arguments."

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16483

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/imap/novell_netmail_status.rb

View Code ZIP pw:eip

References (10)

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1015240

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/23114

[Patch] http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972672.htm

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/15491

[Third Party Advisory, VDB Entry] http://www.osvdb.org/20956

[Vendor Advisory] http://secunia.com/advisories/17641

[Patch] http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972673.htm

[Vendor Advisory] http://www.vupen.com/english/advisories/2005/2494

[Patch, Vendor Advisory] http://www.zerodayinitiative.com/advisories/ZDI-05-003.html

[Patch] http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972665.htm

Scores

EPSS 0.8489

EPSS Percentile 99.4%

Details

CWE

CWE-119

Status published

Products (1)

novell/netmail 3.5.2 e-ftfl

Published Nov 18, 2005

Tracked Since Feb 18, 2026