HTTP: Vulnerable Ipswitch IMail Version ( < 8.13)
This signature detects Ipswitch IMail 8.13 and earlier versions, which contain multiple buffer overflow vulnerabilities. Attackers can remotely launch a denial-of-service (DoS) attack against the server or execute malicious code.
Extended Description
It is reported that IMail is susceptible to multiple buffer overflow denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the affected application, denying service to legitimate users. It is conjectured that it may be possible for an attacker to execute arbitrary code in the context of the affected server application. Versions of the application prior to 8.13 are reported affected by these vulnerabilities.
Affected Products
Ipswitch imail
References
BugTraq: 11106
CVE: CVE-2004-2422
URL: http://support.ipswitch.com/kb/IM-20040902-DM01.htm http://www.ipswitch.com/Products/IMail_Server/index.html
Short Name
HTTP:STC:VULN:IMAIL-8-13
Severity
Info
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
( 8.13) < CVE-2004-2422 IMail Ipswitch Version Vulnerable bid:11106
Release Date
02/01/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Rarely
Vendors
Ipswitch
CVSS Score
5.0