EIP-2026-118973

PRE-CVE

Novell NetMail 3.52d - IMAP (Authenticated) Buffer Overflow (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118973. PoCs published by Metasploit.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in Novell NetMail's IMAP AUTHENTICATE GSSAPI command. It sends an overly long string to overwrite the buffer and control program execution, achieving remote code execution.

Description

Novell NetMail 3.52d - IMAP (Authenticated) Buffer Overflow (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16486

View Code ZIP pw:eip

This exploit targets a stack buffer overflow in Novell NetMail's IMAP AUTHENTICATE GSSAPI command. It sends an overly long string to overwrite the buffer and control program execution, achieving remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Novell NetMail <=3.52d

No auth needed

Prerequisites: Network access to the target's IMAP service (port 143)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026