Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:70EE21F7CFB7A9EF3658057B5573984F
HistoryAug 02, 2007 - 12:00 a.m.

Ipswitch IMail IMAP SUBSCRIBE command buffer overflow

2007-08-0200:00:00
SAINT Corporation
download.saintcorporation.com
19

EPSS

0.152

Percentile

95.9%

JSON

Added: 08/02/2007
CVE: CVE-2007-3927
BID: 24962
OSVDB: 36222

Background

IMail is an e-mail server for Windows platforms.

Problem

A buffer overflow vulnerability in the IMAP service could allow an authenticated attacker to execute arbitrary commands by sending a specially crafted SUBSCRIBE command.

Resolution

Upgrade to Ipswitch IMail Server version 2006.21.

References

<http://www.zerodayinitiative.com/advisories/ZDI-07-043.html&gt;

Limitations

Exploit works on Ipswitch IMail 2006.2 and requires a valid IMAP login and password.

Platforms

Windows 2000
Windows Server 2003

Related

saint 3
cvelist 1
prion 1
nvd 1
cve 1
exploitdb 1
nessus 1
saint
saint
Ipswitch IMail IMAP SUBSCRIBE command buffer overflow
2007-08-02 00:00:00
Ipswitch IMail IMAP SUBSCRIBE command buffer overflow
2007-08-02 00:00:00
Ipswitch IMail IMAP SUBSCRIBE command buffer overflow
2007-08-02 00:00:00
cvelist
cvelist
CVE-2007-3927
2007-07-21 00:00:00
prion
prion
Buffer overflow
2007-07-21 00:30:00
nvd
nvd
CVE-2007-3927
2007-07-21 00:30:00
cve
cve
CVE-2007-3927
2007-07-21 00:30:00
exploitdb
exploitdb
IPSwitch IMail Server 2006 9.10 - Subscribe Remote Overflow
2007-07-26 00:00:00
nessus
nessus
Ipswitch IMail Server < 2006.21 Multiple Vulnerabilities
2007-07-19 00:00:00

EPSS

0.152

Percentile

95.9%

JSON
Related for SAINT:70EE21F7CFB7A9EF3658057B5573984F
saint3cvelist1prion1nvd1cve1exploitdb1nessus1