CVEブラウザに戻る

CVE-2005-1255

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0670%

EPSS Percentile31.81th

Published2005年5月25日

Last Modified2026年4月16日

Vulnerability Description

Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.

Affected Platforms (CPE)

📦

Ipswitch

Imail

= 8.12

📦

Ipswitch

Imail

= 8.13

📦

Ipswitch

Imail Server

<= 8.2_hotfix_2

📦

Ipswitch

Ipswitch Collaboration Suite

All versions

References & Advisories

🔗 http://securitytracker.com/id?1014047

🔗 http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities

🔗 http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html

🔗 http://www.securityfocus.com/bid/13727

🔗 http://securitytracker.com/id?1014047

🔗 http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities

🔗 http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html

🔗 http://www.securityfocus.com/bid/13727

関連する脆弱性情報

CVE-2004-029710.0

Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 all...

CVE-1999-104610.0

Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary comm...

CVE-2002-077710.0

Buffer overflow in the LDAP component of Ipswitch IMail 7.1 and earlier allows remote attackers to execute arbitrary code via a lo...

CVE-2005-125610.0

Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versio...