Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:0E0FA72FC76966BD8AFF956C95B7F1C2
HistoryMar 15, 2006 - 12:00 a.m.

IMail IMAP FETCH command buffer overflow

2006-03-1500:00:00
SAINT Corporation
download.saintcorporation.com
19

EPSS

0.145

Percentile

95.8%

JSON

Added: 03/15/2006
CVE: CVE-2005-3526
BID: 17063
OSVDB: 23796

Background

IMail is a mail server for Windows including SMTP, IMAP, and LDAP services.

Problem

A buffer overflow vulnerability in IMail allows remote authenticated attackers to execute arbitrary commands by sending a specially crafted **FETCH** command to the IMAP service.

Resolution

Upgrade to IMail 2006.03 or higher.

References

<http://secunia.com/advisories/19168/&gt;

Limitations

Exploit works on IMail Server 2006(02a). At least one message must exist in the user’s inbox in order for the exploit to succeed.

Platforms

Windows 2000
Windows XP

Related

cvelist 1
cve 1
nvd 1
zdi 1
saint 3
nessus 1
securityvulns 1
cvelist
cvelist
CVE-2005-3526
2006-03-13 19:00:00
cve
cve
CVE-2005-3526
2006-03-13 19:00:00
nvd
nvd
CVE-2005-3526
2005-12-31 05:00:00
zdi
zdi
Ipswitch Collaboration Suite Code Execution Vulnerability
2006-03-13 00:00:00
saint
saint
IMail IMAP FETCH command buffer overflow
2006-03-15 00:00:00
IMail IMAP FETCH command buffer overflow
2006-03-15 00:00:00
IMail IMAP FETCH command buffer overflow
2006-03-15 00:00:00
nessus
nessus
Ipswitch IMail Server/Collaboration Suite IMAP FETCH Command Overflow
2006-03-13 00:00:00
securityvulns
securityvulns
[Full-disclosure] ZDI-06-003: Ipswitch Collaboration Suite Code Execution Vulnerability
2006-03-13 00:00:00

EPSS

0.145

Percentile

95.8%

JSON
Related for SAINT:0E0FA72FC76966BD8AFF956C95B7F1C2
cvelist1cve1nvd1zdi1saint3nessus1securityvulns1