ZDI-10-127: Ipswitch Imail Server Mailing List Remote Code Execution Vulnerability

ZDI-10-127: Ipswitch Imail Server Mailing List Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-127 July 15, 2010 -- CVSS: 9, AV:N/AC:L/Au:S/C:C/I:C/A:C -- Affected Vendors: Ipswitch -- Affected Products: Ipswitch IMail -- TippingPointTM IPS Customer...

Ipswitch IMail Server < 11.02 Multiple Vulnerabilities

Binary data 5600.prm...

Ipswitch IMail Server < 11.02 Multiple Vulnerabilities

The remote host appears to be running Ipswitch IMail Server prior to version 11.02. It is, therefore, affected by multiple issues : - By sending a specially crafted message to imailsrv.exe with multiple 'Reply-To' headers set, it may be possible for a remote, unauthenticated attacker to execute...

Ipswitch IMail Server < 11.02 Multiple Vulnerabilities

Ipswitch IMail Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ipswitch:imailserver"...

Ipswitch IMail Server < 11.02 multiple Vulnerabilities

Ipswitch IMail Server Copyright: Copyright c 2010 Greenbone Networks GmbH This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2 or any later version, as published by the Free Software Foundation. This program is...

Ipswitch IMail Server邮件列表imailsrv.exe栈溢出漏洞

BUGTRAQ ID: 41719 Ipswitch IMail Server是Ipswitch协作组件中捆绑的一个邮件服务器。 imailsrv.exe进程用于处理发送给imailsrv的消息。如果消息标题中包含有“?Q?”运算符，则该序列之后的字符串未经长度检查便被拷贝到了本地栈缓冲区，导致执行任意代码。 如果要到达这个代码路径，邮件列表必须受口令保护（需认证情况），或之前已经配置了口令（无需认证情况）。 Ipswitch IMail 11.01 厂商补丁： Ipswitch -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Ipswitch Imail Server Mailing List Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IPSwitch IMail. Authentication might be required to exploit this vulnerability. The specific flaw exists within imailsrv.exe which is invoked to handle messages sent to the imailsrv. When a message...

Ipswitch Imail Server Queuemgr Format String Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IPSwitch IMail. Authentication is not required to exploit this vulnerability. The specific flaw exists within SMTPDLL.dll called by queuemgr.exe. When handling a message queued for remote delivery...

Ipswitch Imail Server List Mailer Reply-To Address Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IPSwitch IMail List Mailer. Authentication is not required to exploit this vulnerability. The specific flaw exists within imailsrv.exe which is invoked to handle messages sent to the imailsrv. When...

IPSwitch WhatsUp Gold 8.03 - Remote Buffer Overflow (Metasploit)

$Id: ipswitchwugmaincfgret.rb 9820 2010-07-14 13:59:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Ipswitch IMail Server - IMAP SEARCH Buffer Overflow (Metasploit)

$Id: ipswitchsearch.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Ipswitch WS_FTP Server 5.05 - XMD5 Overflow (Metasploit)

$Id: wsftpserver505xmd5.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Ipswitch WS_FTP Professional Detection (Windows SMB Login)

SMB login-based detection of Ipswitch WSFTP Professional. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ipswitch WS_FTP Professional < 12.2 'HTTP' Response Format String Vulnerability

Ipswitch WSFTP Professional is prone to a format string vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2009-4775

Format string vulnerability in Ipswitch WSFTP Professional 12 before 12.2 allows remote attackers to cause a denial of service crash via format string specifiers in the status code portion of an HTTP response...

Format string

Format string vulnerability in Ipswitch WSFTP Professional 12 before 12.2 allows remote attackers to cause a denial of service crash via format string specifiers in the status code portion of an HTTP response...

CVE-2009-4775

CVE-2009-4775 affects Ipswitch WS_FTP Professional versions earlier than 12.2. The issue is a format string vulnerability in the HTTP response handling (status code portion) that allows remote attackers to cause a denial of service by supplying crafted format specifiers. OpenVAS/Nessus entries co...

CVE-2009-4775

Format string vulnerability in Ipswitch WSFTP Professional 12 before 12.2 allows remote attackers to cause a denial of service crash via format string specifiers in the status code portion of an HTTP response...

KLA10225 DoS vulnerability in WS FTP

A format string vulnerability was found in WS FTP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed format string. Original advisories - Exploitation Public exploits exist for this vulnerability...

Ipswitch WS_FTP Client Format String (CVE-2008-3734)

The Ipswitch WSFTP client is a popular file transfer client which is fully compliant with the File Transfer Protocol FTP specifications. A format string vulnerability exists in the Ipswitch WSFTP client FTP product. The vulnerability is due to the input validation flaw, when parsing a message...