ID de Prueba:	1.3.6.1.4.1.25623.1.0.900201
Categoría:	Denial of Service
Título:	WinGate IMAP Server Buffer Overflow Vulnerability
Resumen:	Qbik WinGate is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Qbik WinGate is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The vulnerability is due to a boundary error in the processing of IMAP commands. This can be exploited by issuing an IMAP LIST command with an overly long argument. Vulnerability Impact: Exploiting this issue will consume computer resources and deny access to legitimate users or to potentially compromise a vulnerable system or may allow execution of arbitrary code. Affected Software/OS: WinGate 6.2.2 and prior versions on Windows (All). Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3606 BugTraq ID: 30606 http://www.securityfocus.com/bid/30606 Bugtraq: 20080808 [AJECT] WinGate Email Server (IMAP) vulnerability (Google Search) http://www.securityfocus.com/archive/1/495264/100/0/threaded http://www.securitytracker.com/id?1020644 http://secunia.com/advisories/31442 http://securityreason.com/securityalert/4146 XForce ISS Database: wingate-imapserver-bo(44370) https://exchange.xforce.ibmcloud.com/vulnerabilities/44370
Copyright	Copyright (C) 2008 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.