Mail radar search

Mail injection through WebMail applications

Submited by cheatman, on 2007-12-01

This article describes an attack method against Web applications that communicate with mail servers, particularly WebMail applications. Some of the applications that are vulnerable to the mail injection threat can be exploited and forced to send arbitrary commands through e-mail protocols such as IMAP and SMTP. Hopefully, this information will prove useful to auditors and mail server code developers.

full article

comments (0)

email this

bookmark this

Rating:


Articles & tutorials Backup & Archiving Email Clients Mobility Operating Systems Reporting Tools Security Antispam Antivirus Reports Server Administration Smart Setups Clustering Virtualization Studies & Benchmarks Support Services Web Integration Messaging news Axigen Presents Itself as a Fully Grown Messaging and Collaboration Platform with Version 8 Bucharest, Romania – March 31, 2011 – Axigen... Axigen Enters Indonesia through MTI Bucharest, Romania - February 17, 2011 - Axigen... Experience the Axigen Ajax WebMail with Calendars, Tasks and Notes The Axigen Team (http://www.axigen.com) has added calendars, to do... Upcoming events Switching from Free Open... AXIGEN (www.axigen.com), the professional messaging solution...	Articles Mail injection through WebMail applications Submited by cheatman, on 2007-12-01 This article describes an attack method against Web applications that communicate with mail servers, particularly WebMail applications. Some of the applications that are vulnerable to the mail injection threat can be exploited and forced to send arbitrary commands through e-mail protocols such as IMAP and SMTP. Hopefully, this information will prove useful to auditors and mail server code developers. full article comments (0) \| email this \| bookmark this Rating:	Why Register? Already a member? Blacklist monitoring alerts Signup for our real-time monitoring service and receive email notifications each time one of your IPs gets blacklisted. Mail Server Operating System Poll .01 What OS do you use for your email server? Linux Windows Other .02 How many mailboxes do you currently manage? 1-50 51-300 300+ .03 Would you like to comment upon the choosing of this particular OS? DNS Tools Get IP status, owner and location, obtain its corresponding hostname or check specific ports. Ping Statistics Reverse DNS Lookup Whois Info (IP owner) GeoIP Information Check Port Open Relay Test Test if your mail server is an open relay for spammers. Blacklist Checker Check if your IP is listed in DNS based email blacklists (DNSBL)