CVE-2019-11395

CRITICAL

MailCarrier 2.51 - Remote Code Execution via Buffer Overflow in SMTP/POP3 Commands

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2019-11395. PoCs published by RedAlien00, RafaelBicas, caioprince.

AI-analyzed exploit summary This repository contains a functional Python3 exploit for CVE-2019-11395, a buffer overflow vulnerability in MailCarrier. The exploit sends a crafted payload to trigger remote code execution via a reverse shell.

Description

A buffer overflow in MailCarrier 2.51 allows remote attackers to execute arbitrary code via a long string, as demonstrated by SMTP RCPT TO, POP3 USER, POP3 LIST, POP3 TOP, or POP3 RETR.

Exploits (3)

nomisec WORKING POC 1 stars
by RedAlien00 · poc
https://github.com/RedAlien00/CVE-2019-11395

This repository contains a functional Python3 exploit for CVE-2019-11395, a buffer overflow vulnerability in MailCarrier. The exploit sends a crafted payload to trigger remote code execution via a reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: MailCarrier (version not specified)
No auth needed
Prerequisites: Network access to the target MailCarrier service · Python3 environment
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC
by RafaelBicas · poc
https://github.com/RafaelBicas/CVE-2019-11395

The repository contains a functional Python script demonstrating a buffer overflow exploit for CVE-2019-11395 in MailCarrier 2.51 via the POP3 USER command. The PoC includes a structured payload with a buffer, EIP overwrite, NOPs, and a placeholder for shellcode, along with detailed steps for exploitation.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: MailCarrier 2.51
No auth needed
Prerequisites: Network access to the target's POP3 service (port 110) · Knowledge of the target's IP address · Ability to craft and send malicious payloads
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC
by caioprince · poc
https://github.com/caioprince/CVE-2019-11395

This repository contains a functional exploit for CVE-2019-11395, a buffer overflow vulnerability in MailCarrier 2.51. The exploit targets the POP3 USER command, sending a crafted payload with a reverse shell to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: MailCarrier 2.51
No auth needed
Prerequisites: Network access to the target's POP3 service (port 110) · A listener set up to receive the reverse shell connection
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (10)

Core 10
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/152502/MailCarrier-2.51-RCPT-TO-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/152506/MailCarrier-2.51-TOP-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/152505/MailCarrier-2.51-LIST-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/152504/MailCarrier-2.51-USER-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/152530/MailCarrier-2.51-RETR-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/152502/MailCarrier-2.51-RCPT-TO-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/152504/MailCarrier-2.51-USER-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/152505/MailCarrier-2.51-LIST-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/152506/MailCarrier-2.51-TOP-Buffer-Overflow.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/152530/MailCarrier-2.51-RETR-Buffer-Overflow.html

Scores

CVSS v3 9.8
EPSS 0.1457
EPSS Percentile 96.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
tabslab/mailcarrier 2.51
Published Apr 22, 2019
Tracked Since Feb 18, 2026