5 matches found
Ipswitch IMail Web Calendaring Arbitrary File Read (CVE-2005-1252)
The Ipswitch IMail Server product contains a variety of server components. These components include POP3, SMTP, IMAP, and a Web Calendaring server. The IMail Web Calendaring server provides functions for users to store schedules, set appointments, and send reminder information using HTTP protocol...
NetMail IMAP APPEND command buffer overflow
Added: 12/29/2006 CVE: CVE-2006-6425 BID: 21723 OSVDB: 31362 Background Novell NetMail is an e-mail and calendaring server application. Problem A buffer overflow in the NetMail IMAP service allows remote, authenticated attackers to execute arbitrary commands by sending a long, specially crafted...
CVE-2005-1252
CVE-2005-1252 affects Ipswitch IMail Web Calendaring server. A directory traversal flaw in handling requests for nonexistent .jsp resources lets an unauthenticated remote attacker read arbitrary files via crafted GET requests (e.g., ..\ sequences). Affects IMail 8.13 and earlier versions up to IM...
CVE-2005-1252
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...
CVE-2005-1252
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...