CVE-2008-1358
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-1358
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in the IMAP server in Alt-N Technologies MDaemon 9.6.4 allows remote authenticated users to execute arbitrary code via a FETCH command with a long BODY.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Alt-N MDaemon IMAP服务器FETCH命令远程栈溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MDaemon是一款基于Windows的邮件服务程序。 MDaemon的IMAP服务器在处理FETCH命令的参数数据时存在栈溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 如果远程攻击者向该服务发送的FETCH命令中的BODY数据项包含有超长的分段标识的话,就可以触发这个溢出,导致执行任意代码。但成功攻击要求拥有有效的用户凭据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-1358
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-1358
请登录查看更多情报信息。
- http://files.altn.com/MDaemon/Release/RelNotes_en.txtx_refsource_CONFIRM
- http://www.be4mind.com/?q=node/256x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2008-1358
Same Patch Batch · n/a · 2008-03-17 · 23 CVEs total
| CVE-2008-1342 | Polymita BPM-Suite 和 CollagePortal search feature多个跨站脚本攻击漏洞 | |
| CVE-2008-1352 | Edior CMS 'search.php' 目录遍历漏洞 | |
| CVE-2008-1351 | XOOPS Tutorials 多个SQL注入漏洞 | |
| CVE-2008-1350 | Fully Modded PHPBB2 'kb.php' SQL注入漏洞 | |
| CVE-2008-1349 | bamaGalerie 'viewcat.php' SQL注入漏洞 | |
| CVE-2008-1348 | eWeather 'index.php' 跨站脚本攻击漏洞 | |
| CVE-2008-1347 | EasyGallery 'index.php' 多个跨站脚本攻击漏洞 | |
| CVE-2008-1346 | EasyGallery 'index.php' SQL注入漏洞 | |
| CVE-2008-1345 | EasyCalendar 'calendar_backend.php' 跨站脚本攻击漏洞 | |
| CVE-2008-1344 | EasyCalendar 多个SQL注入漏洞 | |
| CVE-2008-1343 | SCO UnixWare的pkgadd命令目录遍历漏洞 | |
| CVE-2008-1367 | Linux Kernel Direction Flag本地内存崩溃漏洞 | |
| CVE-2008-1341 | LaGarde StoreFront 'SearchResults.aspx' SQL注入漏洞 | |
| CVE-2008-1360 | Nagios 未明CGI脚本跨站脚本攻击漏洞 | |
| CVE-2008-1359 | Invision Power Board 跨站脚本攻击漏洞 | |
| CVE-2008-1357 | McAfee Framework 'applib.dll库' 远程格式串处理漏洞 | |
| CVE-2008-1356 | Sun Solaris 10 Java Desktop System GNOME On-Screen Keyboard锁定屏幕绕过漏洞 | |
| CVE-2008-1355 | Jeebles Technology Jeebles Directory 'index.php'跨站脚本攻击漏洞 | |
| CVE-2008-1354 | Virtual Support Office XP 'MyIssuesView.asp' 远程SQL注入漏洞 | |
| CVE-2008-1353 | ZABBIX vfs.file.cksum命令请求拒绝服务漏洞 |
Showing top 20 of 23 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2008-1358
No comments yet