Ipswitch WS_FTP Server with SSH 6.1.0.0 - Remote Buffer Overflow (PoC)

Ipswitch WSFTP Server with SSH 6.1.0.0 - Remote Buffer Overflow PoC IpSwitch WSFTPSERVER with SSH remote Buffer Overflow Website:http://www.wsftp.com/products/wsftpserver/ Version:6.1.0.0 last one,others might be vuln too Bug: Remote Buffer Overflow CD 8e8.a78: Access violation - code c0000005...

IpSwitch WS_FTP Server SFTP server buffer overflow

Buffer overflow on oversized CWD...

Ipswitch IMail SMTP Server IMail客户端远程缓冲区溢出漏洞

Ipswitch IMail SMTP Server IMail Client是一款提供对IMail服务器进行管理的客户端。 IMail Client客户端处理畸形multipart MIME数据存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 当处理EMAIL中包含multipart MIME数据时，如果"boundary"参数设置超过212字节，可导致触发基于段的缓冲区溢出，精心构建EMAIL数据并诱使用户打开，可导致以应用程序进程权限执行任意指令。 Ipswitch IMail Client 9.22 + Compaq Insight Manager...

Buffer overflow

Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail Server 2006.22, allows remote attackers to execute arbitrary code via a long boundary parameter in a multipart MIME e-mail message...

CVE-2007-4345

CVE-2007-4345 : A buffer overflow in IMail Client 9.22 (shipped with IPSwitch IMail Server 2006.22) can be triggered by a long boundary parameter in multipart MIME data. This remote vulnerability allows an attacker to execute arbitrary code on the affected system with the user’s privileges.

Secunia Research: IPSwitch IMail Server IMail Client Buffer Overflow

====================================================================== Secunia Research 30/10/2007 - IPSwitch IMail Server IMail Client Buffer Overflow - ====================================================================== Table of Contents Affected...

IPSwitch IMail client buffer overflow

Buffer overflow on oversized MIME boundary...

Ipswitch IMail Client Multipart MIME Email Message Handling Overflow

IMail Client, a tool for administering Ipswitch IMail Server, is installed on the remote Windows host. The version of IMail Client on the remote host contains a boundary error that can be triggered by a long 'boundary' parameter when processing emails with multipart MIME data. If an attacker can...

Ipswitch IMail Client < 2006.23 Multipart MIME Email Overflow

Binary data 4268.prm...

Heap overflow

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by...

CVE-2007-5094

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by...

CVE-2007-5094

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by...

CVE-2007-5094

The CVE pertains to Ipswitch IMail Server (8.01–8.11) where a heap-based buffer overflow in iaspam.dll within the SMTP Server can be triggered by συγκεκριed malformed Content-Type headers (long boundary parameter, a lone “MIME” line, and long Content-Transfer-Encoding lines). This allows remote c...

Ipswitch IMail SMTP服务器IASPAM.DLL远程缓冲区溢出漏洞

BUGTRAQ ID: 25762 IPSwitch IMail是一款基于Windows的邮件服务程序。 IPSwitch IMail的iaspam.dll中存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制服务器。 相关细节： loc1001ada5 == 注意动态调试时候注意加载基址的不同。 mov eax, ebp+var54 mov ecx, eax+10c8h push ecx ; char mov edx, ebp+var54 mov eax, edx+10d0h push eax ; char call strcpy add esp, 8 jmp loc1001a6f0...

IPSwitch IMail Server 8.0x - Remote Heap Overflow

/ by axis 2007-06-05 http://www.ph4nt0m.org Mail-List: http://list.ph4nt0m.org ÒÔÇ°ÓÐÕâžöÒ»žöimailµÄexp PRIVATE Remote Exploit For IMAIL Smtp Server1.2 This is For imail 8.01-8.11 version Usage:faint.exe -d options Options: -d: Hostname to attack Required -t: Type Default: 0 -p:...

IPSwitch IMail Server 8.0x - Remote Heap Overflow

IPSwitch IMail Server 8.0x - Remote Heap Overflow / by axis 2007-06-05 http://www.ph4nt0m.org Mail-List: http://list.ph4nt0m.org ÒÔÇ°ÓÐÕâžöÒ»žöimailµÄexp PRIVATE Remote Exploit For IMAIL Smtp Server1.2 This is For imail 8.01-8.11 version Usage:faint.exe -d options Options: -d:...

IPSwitch IMail Server 8.0x Remote Heap Overflow Exploit

No description provided by source. / by axis 2007-06-05 http://www.ph4nt0m.org Mail-List: http://list.ph4nt0m.org 脪脭脟掳脫脨脮芒啪枚脪禄啪枚imail碌脛exp PRIVATE Remote Exploit For IMAIL Smtp Server1.2 This is For imail 8.01-8.11 version Usage:faint.exe -d host options Options: -d: Hostname to attack Required -...

Ipswitch IMail Server IMAP SEARCH Command Date String Stack Overflow (CVE-2007-3925)

...

[Full-disclosure] Ipswitch FTP XSS leads to FTP server compromise

VDA Labs Advisory: -------------------------- Ipswitch FTP XSS leads to FTP server compromise. The Vendor has been notified, and given the PoC. Synopsis: ------------ There is XSS vulnerability when the WSFTP server logs client FTP commands. All user commands are logged. When the FTP command is...

IPSwitch WS_FTP crossite scripting

Crossite scripting with log file entries in Web interface...