1010 matches found
Ipswitch IMail Server - IMAP4 Server (IMail 11.01) Password Decryptor
No description provided by source. !/usr/bin/python Ipswitch IMail Server - IMAP4 Server IMail 11.01 Password Decryptor Tested on: Windows XP SP3 Windows version does not matter Description: So I reverse engineered the IMail password decryption function in IMailsec.dll, located at 0x00563130. In...
Ipswitch WhatsUp Gold Web Server Buffer Overflow (CVE-2004-0798)
WhatsUp is a network management and monitoring application developedby Ipswitch Inc. It has a built-in web server to enable remote accessto the application. A vulnerability exists in the way the web server component of Ipswitch WhatsUp Gold parses HTTP requests. A buffer overflow occurs due to...
Ipswitch IMail multiple security vulnerabilities
Weak permissions for registry and installation folder. Passwords are stored in readable location with reversible encryption...
CORELAN-10-009 : Ipswitch IMAIL 11.01 multiple vulnerabilities (reversible encryption + weak ACL)
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / / / / / | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |------------------------------------------------- EIP Hunters...
Ipswitch IMail Server Multiple Local Privilege Escalation Vulnerabilities
Ipswitch IMail Server is prone to multiple local privilege-escalation vulnerabilities. Local attackers may exploit these issues to gain elevated privileges, which may lead to a complete compromise of an affected computer. IMail Server 11.01 is affected; other versions may also be vulnerable...
Ipswitch IMail Server Multiple Local Privilege Escalation Vulnerabilities
Ipswitch IMail Server is prone to multiple local privilege-escalation vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Ipswitch IMail Server本地权限提升漏洞
BUGTRAQ ID: 38109 Ipswitch IMail Server是Ipswitch协作组件中捆绑的一个邮件服务器。 默认下IMail允许Internet Guest账号以Full Control权限访问以下注册表项及其子项和值:HKEYLOCALMACHINE\SOFTWARE\Ipswitch\IMail。此外 IMail的IMailsec.dll库中所实现的口令解密算法是可逆的,本地用户可以在HKEYLOCALMACHINE\SOFTWARE \Ipswitch\IMail\Domains\domain name\Users下找到Password字符串,然后破解加密的口...
Ipswitch IMail Server 11.01 Password Decryptor
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |-------------------------------------------------...
Ipswitch IMAIL 11.01 reversible encryption + weak ACL
No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 |...
Ipswitch IMAIL 11.01 reversible encryption + weak ACL
Exploit for unknown platform in category dos / poc ===================================================== Ipswitch IMAIL 11.01 reversible encryption + weak ACL ===================================================== 0x00 : Vulnerability Information + Product : IMail Server + Version : 11.01 + Vendor...
Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |-------------------------------------------------...
IPSwitch IMAIL LDAP Overflow (CVE-2004-0297)
The LDAP protocol elements are encoded for exchange using ASN.1 Basic Encoding Rules BER. Buffer overflow vulnerabilities exist in the LDAP component of IPSwitch's IMail server. The vulnerable LDAP daemon does not properly validate the content of an LDAP message. The vulnerability allows both DoS...
Ipswitch WhatsUp Small Business Application Suite Directory Traversal (CVE-2005-1939)
The Ipswitch WhatsUp Small Business product is an application suite which provides monitoring and protection services for a small network. The program allows a network to be mapped, devices monitored, and failures to be detected. A directory traversal vulnerability exists in the Ipswitch Whatsup...
Ipswitch WS_FTP Server Commands Buffer Overflow Denial of Service (CVE-2004-1135)
The Ipswitch WSFTP server is a full featured secure FTP server complete with several optional authentication mechanisms, encryption and data access controls. It is fully compliant with the File Transfer Protocol specifications. A vulnerability exists in the way Ipswitch WSFTP server parses certai...
Ipswitch WS_FTP Server 5.05 XMD5 Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Ipswitch WSF...
Ipswitch WhatsUp Gold 8.03 Buffer Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Ipswitch...
Ipswitch IMail IMAP SEARCH Buffer Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Ipswitch IMa...
WS-FTP Server 5.03 MKD Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'WS-FTP Serve...
Ipswitch IMail Server SMTP Service Buffer Overflow (CVE-2006-4379)
The Ipswitch IMail Server is a mail server product geared towards medium to large size organizations. It contains implementations of POP3, IMAP4, and SMTP servers. The SMTP server module is installed and started in a default installation. There exists a vulnerability in the SMTP module of the...