CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1255

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0670%
EPSS Percentile31.81th
PublishedMay 25, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.

Affected Platforms (CPE)

πŸ“¦
Ipswitch

Imail

= 8.12
πŸ“¦
Ipswitch

Imail

= 8.13
πŸ“¦
Ipswitch

Imail Server

<= 8.2_hotfix_2
πŸ“¦
Ipswitch

Ipswitch Collaboration Suite

All versions

References & Advisories

πŸ”— http://securitytracker.com/id?1014047
πŸ”— http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities
πŸ”— http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html
πŸ”— http://www.securityfocus.com/bid/13727
πŸ”— http://securitytracker.com/id?1014047
πŸ”— http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities
πŸ”— http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html
πŸ”— http://www.securityfocus.com/bid/13727

Related Vulnerabilities

CVE-2004-029710.0

Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 all...

CVE-1999-104610.0

Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary comm...

CVE-2002-077710.0

Buffer overflow in the LDAP component of Ipswitch IMail 7.1 and earlier allows remote attackers to execute arbitrary code via a lo...

CVE-2005-125610.0

Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versio...