Buffer Overflow Vulnerability in NetWin Authentication Module Affects DMail and SurgeFTP
CVE-2001-1355

Currently unrated

Key Information:

Vendor: Netwin
Status: Dmail; Surgeftp
Vendor: CVE Published:; 20 July 2001

What is CVE-2001-1355?

The NetWin Authentication Module (NWAuth) versions 3.0b and earlier are susceptible to buffer overflow vulnerabilities. Attackers can exploit this issue by sending specially crafted long arguments to the -del or -lookup commands, potentially allowing them to execute arbitrary code on the affected systems. This vulnerability poses a significant risk to systems utilizing DMail, SurgeFTP, and possibly other packages relying on this authentication module.

References

http://www.securityfocus.com/bid/3077

vdb-entryx_refsource_BID

http://online.securityfocus.com/archive/1/198293

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/6865

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
Jun 7, 2002
Vulnerability published
Jul 20, 2001

Netwin

What is CVE-2001-1355?

References

Timeline