Lucene search

K
exploitdbAnonymousEDB-ID:21673
HistoryJul 30, 2002 - 12:00 a.m.

IPSwitch IMail 6.x/7.0.x - Web Calendaring Incomplete Post Denial of Service

2002-07-3000:00:00
anonymous
www.exploit-db.com
20

7.4 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

source: https://www.securityfocus.com/bid/5365/info

IMail is a commercial email server software package distributed and maintained by Ipswitch, Incorporated. IMail is available for Microsoft Operating Systems.

When a HTTP POST command is made to the web calendaring service on port 8484, and the "content-length:" header field is blank, the service becomes unstable. It has been reported that such a transaction with the service results in a crash of the iwebcal service. 

An attacker may exploit this vulnerability by submitting the following request to a vulnerable server:

POST / HTTP/1.0 

7.4 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%