Signature Detail

HTTP: Vulnerable Ipswitch IMail Version ( < 8.13)

This signature detects Ipswitch IMail 8.13 and earlier versions, which contain multiple buffer overflow vulnerabilities. Attackers can remotely launch a denial-of-service (DoS) attack against the server or execute malicious code.

Extended Description

It is reported that IMail is susceptible to multiple buffer overflow denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the affected application, denying service to legitimate users. It is conjectured that it may be possible for an attacker to execute arbitrary code in the context of the affected server application. Versions of the application prior to 8.13 are reported affected by these vulnerabilities.

Affected Products

• Ipswitch IMail 5.0.0
• Ipswitch IMail 5.0.5
• Ipswitch IMail 5.0.6
• Ipswitch IMail 5.0.7
• Ipswitch IMail 5.0.8
• Ipswitch IMail 6.0.0
• Ipswitch IMail 6.0.1
• Ipswitch IMail 6.0.2
• Ipswitch IMail 6.0.3
• Ipswitch IMail 6.0.4
• Ipswitch IMail 6.0.5
• Ipswitch IMail 6.0.6
• Ipswitch IMail 6.1.0
• Ipswitch IMail 6.2.0
• Ipswitch IMail 6.3.0
• Ipswitch IMail 6.4.0
• Ipswitch IMail 7.0.1
• Ipswitch IMail 7.0.2
• Ipswitch IMail 7.0.3
• Ipswitch IMail 7.0.4
• Ipswitch IMail 7.0.5
• Ipswitch IMail 7.0.6
• Ipswitch IMail 7.0.7
• Ipswitch IMail 7.1.0
• Ipswitch IMail 7.12.0
• Ipswitch IMail 8.0.3
• Ipswitch IMail 8.0.5
• Ipswitch IMail 8.1.0

References

• BugTraq: 11106
• CVE: CVE-2004-2422
• URL: http://support.ipswitch.com/kb/IM-20040902-DM01.htm
• URL: http://www.ipswitch.com/Products/IMail_Server/index.html