Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2009/10/26 12:0 a.m.4 views

Ipswitch IMail Web Calendaring Arbitrary File Read (CVE-2005-1252)

The Ipswitch IMail Server product contains a variety of server components. These components include POP3, SMTP, IMAP, and a Web Calendaring server. The IMail Web Calendaring server provides functions for users to store schedules, set appointments, and send reminder information using HTTP protocol...

5CVSS6.2AI score0.12499EPSS
Exploits2
Saint
Saint
added 2006/12/29 12:0 a.m.28 views

NetMail IMAP APPEND command buffer overflow

Added: 12/29/2006 CVE: CVE-2006-6425 BID: 21723 OSVDB: 31362 Background Novell NetMail is an e-mail and calendaring server application. Problem A buffer overflow in the NetMail IMAP service allows remote, authenticated attackers to execute arbitrary commands by sending a long, specially crafted...

9CVSS7.7AI score0.58474EPSS
Exploits7
CVE
CVE
added 2005/05/25 4:0 a.m.56 views

CVE-2005-1252

CVE-2005-1252 affects Ipswitch IMail Web Calendaring server. A directory traversal flaw in handling requests for nonexistent .jsp resources lets an unauthenticated remote attacker read arbitrary files via crafted GET requests (e.g., ..\ sequences). Affects IMail 8.13 and earlier versions up to IM...

5CVSS6.6AI score0.12499EPSS
Exploits2References4Affected Software2
NVD
NVD
added 2005/05/25 4:0 a.m.28 views

CVE-2005-1252

Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...

5CVSS6.5AI score0.12499EPSS
Exploits2References4
Cvelist
Cvelist
added 2005/05/25 4:0 a.m.33 views

CVE-2005-1252

Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...

6.5AI score0.12499EPSS
Exploits2References4
Rows per page
Query Builder