1010 matches found
CVE-2005-1255
CVE-2005-1255 refers to multiple stack-based buffer overflows in the IMail IMAP server (Ipswitch Collaboration Suite and related IMail Server versions). The vulnerability allows a remote attacker to cause arbitrary code execution by sending a crafted LOGIN command with an overly long username arg...
CVE-2005-1249
The IMAP daemon (IMAPD32.EXE) in Ipswitch IPS/ICS resolves a DoS by parsing a malformed LSUB command consisting of a long string of NULL characters, causing an infinite loop and high CPU usage. Affected: Ipswitch IMail/Collaboration Suite (ICS); observed in IMAPD32.EXE (vulnerable ranges not full...
CVE-2005-1254
Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service crash via a SELECT command with a large argument...
CVE-2005-1249
The IMAP daemon IMAPD32.EXE in Ipswitch Collaboration Suite ICS allows remote attackers to cause a denial of service CPU consumption via an LSUB command with a large number of null characters, which causes an infinite loop...
CVE-2005-1252
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...
Immunity Canvas: IPSWITCH_CAL
Name| ipswitchcal ---|--- CVE| CVE-2005-1252 Exploit Pack| CANVAS Description| Ipswitch Calendar Directory Traversal Notes| CVE Name: CVE-2005-1252 VENDOR: IPSwitch Reference: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=242 VersionsAffected: IMail 8.13 up to 8.2p1...
CVE-2005-1252
CVE-2005-1252 affects Ipswitch IMail Web Calendaring server. A directory traversal flaw in handling requests for nonexistent .jsp resources lets an unauthenticated remote attacker read arbitrary files via crafted GET requests (e.g., ..\ sequences). Affects IMail 8.13 and earlier versions up to IM...
CVE-2005-1254
The CVE-2005-1254 issue affects Ipswitch IMail IMAP server (versions 8.12 and 8.13; older versions before IMail Server 8.2 Hotfix 2 are also mentioned). It is caused by a stack-based buffer overflow when processing long arguments to the SELECT command (approximately 260 bytes), leading to a remot...
CVE-2005-1252
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via ".." dot dot backslash sequences in the query string argument in a GET request to a non-existent .jsp...
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability
Ipswitch IMail IMAP SELECT Command DoS Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=241&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch IMail server is a Windows based messaging solution with a customer base of over 53 million users. More...
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerability
Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=242&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch Collaboration Suite ICS is a comprehensive communication and collaboration solution for...
Immunity Canvas: IMAIL_IMAP
Name| imailimap ---|--- CVE| CVE-2005-1255 Exploit Pack| CANVAS Description| IMAIL Imap Notes| CVE Name: CVE-2005-1255 VENDOR: IPSwitch URL: http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities VersionsAffected: IMail 8.13 up to 8.2p1 Repeatability: This is a one shot...
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LSUB DoS Vulnerability
Ipswitch IMail IMAP LSUB DoS Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=245&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch Collaboration Suite ICS is a comprehensive communication and collaboration solution for Microsoft Windows with a...
Ipswitch IMail Web Calendaring Server GET Request Traversal Arbitrary File Access
The remote server is running Ipswitch IMail Web calendaring. The remote version of this software is vulnerable to a directory traversal attack. An attacker, exploiting this vulnerability, may be able to retrieve sensitive files present on the server. %NASLMINLEVEL 70300 C Tenable Network Security...
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability
Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=244&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch Collaboration Suite ICS is a comprehensive communication and collaboration solution for...
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilities
Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilities iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=243&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch Collaboration Suite ICS is a comprehensive communication and collaboration solution for...
Ipswitch IMail Server Multiple Vulnerabilities
Description Ipswitch IMail is prone to multiple remote vulnerabilities. Attackers may exploit these issues to deny service for legitimate users, obtaoin potentially sensitive information, and execute arbitrary code. The vulnerabilities include a directory-traversal issue, two remote...
CVE-2004-1885
Ipswitch WSFTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe...
CVE-2004-1848
Ipswitch WSFTP Server 4.0.2 allows remote attackers to cause a denial of service disk consumption and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file...
CVE-2004-1883
The CVE-2004-1883 issue affects Ipswitch WS_FTP Server 4.0.2. It describes two buffer-overflow routes: (1) via a large error string generated by the ALLO handler that could let remote authenticated users execute arbitrary code, and (2) via a long hostname or username inserted into a reply to a ST...