CVE-2005-1252

Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...

CVE-2005-1252

CVE-2005-1252 affects Ipswitch IMail Web Calendaring server. A directory traversal flaw in handling requests for nonexistent .jsp resources lets an unauthenticated remote attacker read arbitrary files via crafted GET requests (e.g., ..\ sequences). Affects IMail 8.13 and earlier versions up to IM...

Immunity Canvas: ZEN

Name| zen ---|--- CVE| CVE-2005-1255 Exploit Pack| CANVAS Description| imailimap Notes| CVE Name: CVE-2005-1255 VENDOR: IPSwitch VersionsAffected: IMail 8.13 Repeatability: This is a one shot exploit. CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1255 CVSS: 10.0...

CVE-2005-1255

CVE-2005-1255 refers to multiple stack-based buffer overflows in the IMail IMAP server (Ipswitch Collaboration Suite and related IMail Server versions). The vulnerability allows a remote attacker to cause arbitrary code execution by sending a crafted LOGIN command with an overly long username arg...

CVE-2005-1256

Stack-based buffer overflow in the IMAP daemon IMAPD32.EXE in IMail 8.13 in Ipswitch Collaboration Suite ICS, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name...