Surgemail Search Exploit

This module exploits a stack-based buffer overflow in the Surgemail Server 3.x and deploys an agent when successful. The exploit triggers a buffer-overflow vulnerability due to insufficient bounds checking of user supplied input allowing remote attackers to execute arbitrary code on the remote machine.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2007-4377
Product Version: 
7
Released Date: 
Wednesday, September 19, 2007 - 00:00