Ipswitch IMail Server 11.x / 12.x < 12.4.1.15 Multiple Vulnerabilities (Heartbleed)

The remote host appears to be running Ipswitch IMail Server 11.x or 12.x older than version 12.4.1.15 and is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow...

Ipswitch IMail 5.0,WS_FTP Server 1.0.1/1.0.2 Server Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/218/info Non-administrative Imail and WSFTP Server users may elevate their privileges to administrator for these applications by modifying a specific registry value. Once a person has obtained administrative privileges,...

IPSwitch IMail Server <= 8.20 IMAPD Remote Buffer Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Ipswitch IMAIL Server IMAPD 7.13 - 8.20 exploit Site : http://www.ipswitch.com Found by : iDEFENSE Security http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=243...

Ipswitch TFTP Server 1.0.0.24 - Directory Traversal Vulnerability

No description provided by source. Title : Ipswitch TFTP Server Directory Traversal Vulnerability Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.whatsupgold.com/index.aspx Advisory : http://secpod.org/blog/?p=424...

Ipswitch WhatsUp Professional 2006 0 NmConsole/ToolResults.asp sHostname Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17964/info WhatsUp Professional is prone to multiple input-validation vulnerabilities. The issues include remote file-include, information-disclosure, source-code disclosure, cross-site scripting, and input-validation...

Ipswitch IMail 5.0 Imapd Buffer Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/502/info The imapd login process is susceptible to a buffer overflow attack which will crash the service. Telnet to target machine, port 143 OK IMAP4 Server IMail 4.06 X LOGIN glob1 glob2 Where glob1 is 1200 characters an...

Ipswitch WS_FTP Server 3.4/4.0 FTP Command Buffer Overrun Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8542/info Ipswitch WSFTP Server is reported to be prone to buffer overruns when handling data supplied to the APPE and STAT FTP commands. An FTP user who supplies excessive input to these commands could potentially execut...

IPSwitch IMAP Server <= 9.20 Remote Buffer Overflow Exploit

No description provided by source. / Ipsbitch.cpp vs Ipswitch IMAP Tested on: Windows 2000 SP4 Ref: CVE-2007-2795 Author: Dominic Chell [email protected] Found this half written on a VM so decided to finish it. Payload adds a local admin account USER=r00t PASS=r00tr00t!! / include stdafx.h inclu...

IpSwitch WS_FTP Server with SSH 6.1.0.0 - Remote Buffer Overflow PoC

No description provided by source. IpSwitch WSFTPSERVER with SSH remote Buffer Overflow Website:http://www.wsftp.com/products/wsftpserver/ Version:6.1.0.0 last one,others might be vuln too Bug: Remote Buffer Overflow CD 8e8.a78: Access violation - code c0000005 first chance First chance exception...

Ipswitch IMail Server 7/8 Weak Password Encryption Weakness

No description provided by source. source: http://www.securityfocus.com/bid/10956/info Ipswitch IMail is reported to use a weak encryption algorithm when obfuscating saved passwords. A local attacker who has the ability to read the encrypted passwords may easily derive the plaintext password if t...

IPSwitch IMail Server <= 8.15 IMAPD Remote Root Exploit

No description provided by source. IpSwitch IMAIL Server IMAPD Remote r00t Exploit by kcope June 2005 Confidential! use IO::Socket; 316 bytes $cbsc = \xEB\x10\x5B\x4B\x33\xC9\x66\xB9\x25\x01\x80\x34\x0B\xC2\xE2\xFA .\xEB\x05\xE8\xEB\xFF\xFF\xFF...

Ipswitch IMail 5.0.8/6.0/6.1 IMonitor status.cgi DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/914/info IMail includes a service called IMail Monitor which is used for local and remote performance measuring and diagnostics. It includes a small webserver operating on port 8181 to support web-based monitoring. One of...

Ipswitch WhatsUp Professional 2006 0 NmConsole/Navigation.asp sDeviceView Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17964/info WhatsUp Professional is prone to multiple input-validation vulnerabilities. The issues include remote file-include, information-disclosure, source-code disclosure, cross-site scripting, and input-validation...

Ipswitch Imail Server 5.0 SMTP HELO Argument Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8621/info It has been reported that Ipswitch IMail server is prone to an SMTP HELO command argument buffer overflow vulnerability. The issue presents itself likely due to insufficient bounds checking performed when handli...

Ipswitch WhatsUp Professional 2006 Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET requests. This issue allows remo...

Ipswitch WhatsUp Professional 2005 SP1 LOGIN.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14039/info WhatsUp Professional is prone to an SQL injection vulnerability affecting its Web-based front end. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'login.asp'...

Ipswitch IMail 5.0 LDAP Buffer Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/503/info The IMail ldap service has an unchecked buffer, resulting in a classic buffer overflow vulnerability. While it does not crash the service, it drives CPU utilization up rendering the system essentially unusable...

Ipswitch IMail 11.01 - XSS Vulnerability

No description provided by source. !/usr/bin/perl Exploit Title: Ipswitch IMail 11.01 XSS Vulnerability Date: 26-04-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://www.ipswitch.com/ Platform: windows use Net::SMTP; ARGV Check if $ARGV != 2 print \nUSAGE: IMail.pl Mail Server Attacker...

Ipswitch Imail Server - List Mailer Reply-To Address Memory Corruption

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-15-ipswitch-imail-server-list-mailer-reply-to-address-memory-corruption/ ''' ''' Title : Ipswitch Imail...

Ipswitch WhatsUp Gold 7.0/8.0 Notification Instance Name Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11109/info The Ipswitch WhatsUp Gold web interface is prone to a remotely exploitable buffer overflow vulnerability. This may be exploited by authenticated users of the interface to execute arbitrary code in the context o...