Lucene search

MitreCVE-2007-3927

HistoryJul 21, 2007 - 12:30 a.m.

CVE-2007-3927

2007-07-2100:30:00

mitre

web.nvd.nist.gov

cve-2007-3927

buffer overflow

ipswitch imail server

security vulnerability

remote code execution

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.152

Percentile

95.9%

JSON

Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 (1) allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and (2) allow attackers to have an unknown impact via an unspecified vector related to “subscribe.”

Affected configurations

Nvd

Node

ipswitchimail_serverRange≤2006.2

ipswitchipswitch_collaboration_suiteRange≤2006.2

VendorProductVersionCPE
ipswitchimail_server*cpe:2.3:a:ipswitch:imail_server:*:*:*:*:*:*:*:*
ipswitchipswitch_collaboration_suite*cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ipswitch	imail_server	*	cpe:2.3:a:ipswitch:imail_server::::::::
ipswitch	ipswitch_collaboration_suite	*	cpe:2.3:a:ipswitch:ipswitch_collaboration_suite::::::::

References

docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease

osvdb.org/45818

osvdb.org/45819

secunia.com/advisories/26123

www.securityfocus.com/bid/24962

www.securitytracker.com/id?1018421

www.vupen.com/english/advisories/2007/2574

exchange.xforce.ibmcloud.com/vulnerabilities/35504

exchange.xforce.ibmcloud.com/vulnerabilities/35505

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.152

Percentile

95.9%

JSON

Related for CVE-2007-3927