|
|
| |
|
|
| |
|
|
| |
|
.:::.who's online.:::.
|
|
There are currently, 1 guest(s) and 0 member(s) that are online.
|
|
|
|
|
Account Management Vulnerabilities in Ipswitch IMail Server
posted by: valvoline on 17/10/2001 @ 8.38.46
|
Summary:
IMail Server is a spam-resistant mail server for Windows NT/2000. The product suffers from two security vulnerabilities; one allows username harvesting, and the other allows modification of account information without knowing the password for that account.
Vulnerable systems:
Ipswitch IMail Server version 7.04
POP3 Account disclosure:
If you enter a valid username, the reply is:
+OK welcome
On the other hand, if you enter a username that does not exist on the server the reply is:
+OK send your password
This gives you a way to probe for existing accounts on the server.
Web Messaging Server Account Modification :
Log in on one account in the Web Messaging Server and Select Change User Information. Save the HTML page on disk and change the value of the hidden INPUT tag called "olduser" to the name of another account. You also have to change the ACTION value of the FORM tag so it points to the server, and it must contain the random string that you find in the URL to the ordinary page. Next, load this changed page into the browser, fill in some new user information and click on the Save button. This way you can change the user information for any other user.
Vendor response:
Ipswitch have created a patch that among other things fixes these two vulnerabilities. You can find it at:
http://www.ipswitch.com/support/IMail/patch-upgrades.html
Additional information:
The information has been provided by Arne Vidstrom.
|
comments: (0)
|
|
|
|
|
|
|
| | |
|
|
| |
|
.:::.Login.:::.
|
|
Don't have an account yet? You can create one. As registered user you have some advantages like, comments configuration and post comments with your name. |
|
| |
|
|
|
