Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:33FDEB100345344D422E91F92603C691
HistoryJul 27, 2007 - 12:00 a.m.

Ipswitch IMail Server IMAP SEARCH buffer overflow

2007-07-2700:00:00
SAINT Corporation
download.saintcorporation.com
15

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.973

Percentile

99.9%

JSON

Added: 07/27/2007
CVE: CVE-2007-3925
BID: 24962
OSVDB: 36219

Background

IMail is an e-mail server for Windows platforms.

Problem

A buffer overflow vulnerability in the IMAP service could allow an authenticated attacker to execute arbitrary commands by sending a specially crafted SEARCH command.

Resolution

Upgrade to Ipswitch IMail Server version 2006.21.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563&gt;

Limitations

Exploit works on Ipswitch IMail Server 2006.1. A valid IMAP login and password are required.

Platforms

Windows 2000
Windows Server 2003

Related

cve 1
nvd 1
saint 3
metasploit 1
exploitdb 2
cvelist 1
packetstorm 1
checkpoint_advisories 1
prion 1
nessus 1
cve
cve
CVE-2007-3925
2007-07-21 00:30:00
nvd
nvd
CVE-2007-3925
2007-07-21 00:30:00
saint
saint
Ipswitch IMail Server IMAP SEARCH buffer overflow
2007-07-27 00:00:00
Ipswitch IMail Server IMAP SEARCH buffer overflow
2007-07-27 00:00:00
Ipswitch IMail Server IMAP SEARCH buffer overflow
2007-07-27 00:00:00
metasploit
metasploit
Ipswitch IMail IMAP SEARCH Buffer Overflow
2007-07-29 14:38:47
exploitdb
exploitdb
Ipswitch IMail Server - IMAP SEARCH Buffer Overflow (Metasploit)
2010-06-15 00:00:00
IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow
2007-07-25 00:00:00
cvelist
cvelist
CVE-2007-3925
2007-07-21 00:00:00
packetstorm
packetstorm
Ipswitch IMail IMAP SEARCH Buffer Overflow
2009-11-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Ipswitch IMail Server IMAP SEARCH Command Date String Stack Overflow (CVE-2007-3925)
2007-09-04 00:00:00
prion
prion
Buffer overflow
2007-07-21 00:30:00
nessus
nessus
Ipswitch IMail Server < 2006.21 Multiple Vulnerabilities
2007-07-19 00:00:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.973

Percentile

99.9%

JSON
Related for SAINT:33FDEB100345344D422E91F92603C691
cve1nvd1saint3metasploit1exploitdb2cvelist1packetstorm1checkpoint_advisories1prion1nessus1