SimplicityForums Vulnerable Again? 12-10-2012, 04:49 PM
#1
I think it just might be! I decided to take a look at SF again. Go over some of the information I have collected this morning and found a possible vulnerability.
Vuln:
It's a heap based bufferoverflow which can allow a remote attacker to execute arbitrary code on the vulnerable system. Failed attempts to exploit the vulnerability can result in a DDoS. Now if you check this
https://lists.exim.org/lurker/message/20...7b.en.html
you will see that (Which we do not know currently) if exim was built with DISABLE_DKIMa or if he had put this at the start of an ACL plumbed into acl_smtp_connect or
acl_smtp_rcpt:
then it would not be affected!
No proof of concept at this time.
Information from Reconnaissance where this possible vulnerability popped up:
http://pastebin.com/GVLsZMGA
It's just a small piece of it. If you wish for the whole scan (still have more scans to do) I will glady pm you with a pastebin link of it.
Vuln:
Spoiler:
It's a heap based bufferoverflow which can allow a remote attacker to execute arbitrary code on the vulnerable system. Failed attempts to exploit the vulnerability can result in a DDoS. Now if you check this
https://lists.exim.org/lurker/message/20...7b.en.html
you will see that (Which we do not know currently) if exim was built with DISABLE_DKIMa or if he had put this at the start of an ACL plumbed into acl_smtp_connect or
acl_smtp_rcpt:
then it would not be affected!
No proof of concept at this time.
Information from Reconnaissance where this possible vulnerability popped up:
http://pastebin.com/GVLsZMGA
It's just a small piece of it. If you wish for the whole scan (still have more scans to do) I will glady pm you with a pastebin link of it.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)