CVE-2004-1883

Multiple buffer overflows in Ipswitch WSFTP Server 4.0.2 1 allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or 2 may allow remote FTP administrators to execute arbitrary code by causing a long hostname or username to b...

CVE-2004-1884

CVE-2004-1884 affects Ipswitch WS_FTP Server 4.0.2. The vulnerability is a backdoor: the XXSESS_MGRYY user with a default password can enable remote access, enabling partial confidentiality/integrity/availability impact as indicated by CVSS base vector AV:N/AC:L/Au:N/C:P/I:P/A:P. Public reference...

CVE-2004-1848

Ipswitch WS_FTP Server 4.0.2 is affected by a remote denial-of-service vulnerability involving a REST command with an oversized size argument, followed by a STOR of a smaller file, which can cause disk consumption and bypass file-size restrictions. The issue is documented under CVE-2004-1848; rel...

CVE-2004-1885

WS_FTP Server 4.0.2 is affected by CVE-2004-1885. The vulnerability allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify iFtpSvc options processed by iftpmgr.exe. This is a local/remote code-execution style impact described in the records, ...

CVE-2004-1884

Ipswitch WSFTP Server 4.0.2 has a backdoor XXSESSMGRYY username with a default password, which allows remote attackers to gain access...

CVE-1999-1557

Buffer overflow in the login functions in IMAP server imapd in Ipswitch IMail 5.0 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via 1 a long user name or 2 a long password...

CVE-2005-0707

Buffer overflow in the IMAP daemon IMAP4d32.exe for Ipswitch Collaboration Suite ICS before 8.15 Hotfix 1 allows remote authenticated users to execute arbitrary code via a long EXAMINE command...

iDEFENSE Security Advisory 03.10.05: Ipswitch Collaboration Suite IMAP EXAMINE Buffer Overflow Vulnerability

Ipswitch Collaboration Suite IMAP EXAMINE Buffer Overflow Vulnerability iDEFENSE Security Advisory 03.10.05 www.idefense.com/application/poi/display?id=216&type=vulnerabilities March 10, 2005 I. BACKGROUND Ipswitch Collaboration Suite ICS is a comprehensive communication and collaboration solutio...

Ipswitch IMail IMAP EXAMINE Argument Buffer Overflow

The remote host is running a version of the Ipswitch Collaboration Suite / Ipswitch IMail IMAP server that is prone to a buffer overflow when processing an EXAMINE command with a long argument. Specifically, if an authenticated attacker sends an EXAMINE command with a malformed mailbox name of 25...

IPSwitch IMAIL Mail server IMAP buffer overflow

Buffer overflow in IMAP DELETE and EXAMINE commands...

CVE-2005-0707

Buffer overflow in the IMAP daemon IMAP4d32.exe for Ipswitch Collaboration Suite ICS before 8.15 Hotfix 1 allows remote authenticated users to execute arbitrary code via a long EXAMINE command...

CVE-2005-0707

Ipswitch Collaboration Suite's IMAP server (IMAP4d32.exe) is affected by a buffer overflow in the IMAP EXAMINE handler, allowing remote authenticated attackers to execute arbitrary code. The issue exists in ICS before 8.15 Hotfix 1; iDEFENSE describes a 259-byte malformed mailbox name causing sta...

Ipswitch IMail < 8.15 Hotfix 1 IMAP EXAMINE Argument Buffer Overflow

Binary data 2695.prm...

CVE-2004-1520

CVE-2004-1520 involves a stack-based buffer overflow in the Ipswitch IMail IMAP4D service caused by processing an excessively long DELETE command. It requires a valid IMAP login and password (authenticated access) and can lead to remote code execution with the privileges of the IMAP4d process; im...

CVE-2004-1520

Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command...

CVE-2004-2422

Multiple features in Ipswitch IMail Server before 8.13 allow remote attackers to cause a denial of service crash via 1 a long sender field to the Queue Manager or 2 a long To field to the Web Messaging component...

CVE-2004-1848

Ipswitch WSFTP Server 4.0.2 allows remote attackers to cause a denial of service disk consumption and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file...

CVE-2004-2423

Unknown vulnerability in the Web calendaring component of Ipswitch IMail Server before 8.13 allows remote attackers to cause a denial of service crash via "specific content."...

CVE-2004-1885

Ipswitch WSFTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe...

CVE-2004-1520

Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command...