CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
90.3%
Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.
Vendor | Product | Version | CPE |
---|---|---|---|
truenorth_software | ia_emailserver | corporate_5.2.2_build_1051 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.2.2_build_1051:*:*:*:*:*:*:* |
truenorth_software | ia_emailserver | corporate_5.2.3_build_1056 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.2.3_build_1056:*:*:*:*:*:*:* |
truenorth_software | ia_emailserver | corporate_5.3.1 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.3.1:*:*:*:*:*:*:* |
truenorth_software | ia_emailserver | corporate_5.3.2 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.3.2:*:*:*:*:*:*:* |
truenorth_software | ia_emailserver | corporate_5.3.3 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.3.3:*:*:*:*:*:*:* |
truenorth_software | ia_emailserver | corporate_5.3.4_build_2018 | cpe:2.3:a:truenorth_software:ia_emailserver:corporate_5.3.4_build_2018:*:*:*:*:*:*:* |