Lucene search

K

[email protected]NVD:CVE-2006-4379

HistorySep 08, 2006 - 9:04 p.m.

CVE-2006-4379

2006-09-0821:04:00

[email protected]

web.nvd.nist.gov

2

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.962 High

EPSS

Percentile

99.5%

Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an ‘@’ character and before a ‘:’ character.

Affected configurations

NVD

Node

ipswitchimail_plusMatch2006

OR

ipswitchimail_secure_serverMatch2006

OR

ipswitchipswitch_collaboration_suiteMatch2006_premium

OR

ipswitchipswitch_collaboration_suiteMatch2006_standard

References

secunia.com/advisories/21795

securitytracker.com/id?1016803

securitytracker.com/id?1016804

www.ipswitch.com/support/ics/updates/ics20061.asp

www.ipswitch.com/support/imail/releases/im20061.asp

www.securityfocus.com/archive/1/445521/100/0/threaded

www.securityfocus.com/bid/19885

www.vupen.com/english/advisories/2006/3496

www.zerodayinitiative.com/advisories/ZDI-06-028.html

exchange.xforce.ibmcloud.com/vulnerabilities/28789

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.962 High

EPSS

Percentile

99.5%

Related for NVD:CVE-2006-4379

saint4 nessus1 cvelist1 zdi1 cert1 checkpoint_advisories1 securityvulns1 cve1 canvas1