Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
IMAP:IPSWITCH:DELETE-OF |
|---|---|
Severity |
Major |
Recommended |
No |
Category |
IMAP |
Keywords |
IPSwitch IMAP Server DELETE Overflow |
Release Date |
2004/11/17 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
IMAP: IPSwitch IMAP Server DELETE Overflow
This signature detects attempts to exploit a known vulnerability against IPSwitch IMAP server. Attackers can send an overly long delete command (DELETE), to overflow the buffer and take complete control of the server.
Extended Description
Ipswitch IMail is reported prone to a remote buffer overflow vulnerability. This issue exists due to insufficient boundary checks performed by the application. Exploitation of this issue can allow a remote attacker to execute arbitrary code on a vulnerable computer to gain unauthorized access. Ipswitch IMail 8.13 is reported prone to this vulnerability. It is possible that other versions are affected as well.
Affected Products
- Ipswitch imail 8.13.0
References
- BugTraq: 11675
- CVE: CVE-2004-1520
- CVE: CVE-2005-1520
- URL: http://www.ipswitch.com/Support/ICS/updates/im814hf1.html
- URL: http://esikker.dk/vul_15771.php