IMAP: Ipswitch iMail Arbitrary File Read
This signature detects directory traversal attacks against Ipswitch iMail Calandering server. A successful attack can allow malicious users to download arbitrary files from the iMail server.
Extended Description
Ipswitch IMail is prone to multiple remote vulnerabilities. Attackers may exploit these issues to deny service for legitimate users, obtaoin potentially sensitive information, and execute arbitrary code. The vulnerabilities include a directory-traversal issue, two remote denial-of-service issues, and multiple buffer-overflow issues.
Affected Products
Ipswitch imail
References
BugTraq: 13727
CVE: CVE-2005-1252
URL: http://www.ipswitch.com/Support/ICS/updates/ics2hf2.html
Short Name
IMAP:IPSWITCH:IMAIL-INFO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
IMAP
Keywords
Arbitrary CVE-2005-1252 File Ipswitch Read bid:13727 iMail
Release Date
07/01/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/8484
False Positive
Unknown
Vendors
Ipswitch
CVSS Score
5.0