Preface: POP3 MIME filename overflowLogo -Internet Security Systems

POP3 MIME filename overflow
advICE :Intrusions : 2000703
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

An attempt to exploit the MIME overflow bug has been seen.

Details

A very long user name, password, or file name often signals an intentional effort to overflow a buffer on a server. By constructing the data in a particular way, the intruder may be able to execute his own code on the attacked system.

 more information
CERT: CA-98.10.mime_buffer_overflows  
 
BugtraqID: 1210   Qualcomm Eudora Pro Long Filename Attachment Vulnerability
 
advICE: Buffer overflows  
More about this general class of attacks, which is the root cause of many attacks on the Internet.  
Other POP3 exploits  
 

 parametric information
lengthThe length of the filename.
filenameThe beginning portion of the filename.

 configuration for this item
file.maxname200The maximum length of a file name.

 
Version appeared:
Privacy Policy |  Copyright Info