Signature Detail
Short Name |
APP:IPSWITCH:IMAIL-FILEDISCLSR |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Ipswitch IMail Web Calendaring Arbitrary File Read |
Release Date |
2012/12/16 |
Update Number |
2211 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Ipswitch IMail Web Calendaring Arbitrary File Read
This signature detects attempts to exploit a vulnerability in the Ipswitch IMail Web Calendaring. Attackers can read arbitrary files on the Web server.
Extended Description
Ipswitch IMail is prone to multiple remote vulnerabilities. Attackers may exploit these issues to deny service for legitimate users, obtaoin potentially sensitive information, and execute arbitrary code. The vulnerabilities include a directory-traversal issue, two remote denial-of-service issues, and multiple buffer-overflow issues.
Affected Products
- Ipswitch IMail 5.0.0
- Ipswitch IMail 5.0.5
- Ipswitch IMail 5.0.6
- Ipswitch IMail 5.0.7
- Ipswitch IMail 5.0.8
- Ipswitch IMail 6.0.0
- Ipswitch IMail 6.0.1
- Ipswitch IMail 6.0.2
- Ipswitch IMail 6.0.3
- Ipswitch IMail 6.0.4
- Ipswitch IMail 6.0.5
- Ipswitch IMail 6.0.6
- Ipswitch IMail 6.1.0
- Ipswitch IMail 6.2.0
- Ipswitch IMail 6.3.0
- Ipswitch IMail 6.4.0
- Ipswitch IMail 7.0.1
- Ipswitch IMail 7.0.2
- Ipswitch IMail 7.0.3
- Ipswitch IMail 7.0.4
- Ipswitch IMail 7.0.5
- Ipswitch IMail 7.0.6
- Ipswitch IMail 7.0.7
- Ipswitch IMail 7.1.0
- Ipswitch IMail 7.12.0
- Ipswitch IMail 8.0.3
- Ipswitch IMail 8.0.5
- Ipswitch IMail 8.1.0
- Ipswitch IMail 8.13.0
- Ipswitch IMail 8.14.0
- Ipswitch IMail 8.15.0 Hotfix 1
- Ipswitch IMail 8.2.0
References
- BugTraq: 13727
- CVE: CVE-2005-1254