Immunity, Inc.
Name imail_rcptoverflow
CVE CVE-2006-4379
Exploit Pack CANVAS
DescriptionIMail SMTPD32 Stack Overflow
NotesCVE Name: CVE-2006-4379
VENDOR: IPSwitch
Post-exploitaion: Post-exploitation requires stoping and starting the IMail SMTP Server Service
From a different process (use injectprocess to get a new listener) runcommand: net stop "IMail SMTP Server"
net start "IMail SMTP Server"
Platforms Tested: Windows 2000 SP4 (English) IMail 8.13

Date public: 2006-09-07
CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4379
CVSS: 7.5

Learn more about the CANVAS Exploit Pack here: CANVAS