This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of software utilizing SurgeMail Mail Server. The vulnerability is caused due to a boundary error within SurgeMail Mail Server. A buffer overflow vulnerability is located in the function which handles the real CGI executables. This can be exploited to cause a stack-based buffer overflow via an overly long, specially-crafted argument passed to this module.
CVE Link
Exploit Platform
Product Name