CVE-2005-1255
Summary
| CVE | CVE-2005-1255 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2005-05-25 04:00:00 UTC |
| Updated | 2008-11-15 05:46:00 UTC |
| Description | Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ipswitch | Imail | 8.12 | All | All | All |
| Application | Ipswitch | Imail | 8.13 | All | All | All |
| Application | Ipswitch | Imail | 8.12 | All | All | All |
| Application | Ipswitch | Imail | 8.13 | All | All | All |
| Application | Ipswitch | Imail Server | All | All | All | All |
| Application | Ipswitch | Ipswitch Collaboration Suite | All | All | All | All |
| Application | Ipswitch | Ipswitch Collaboration Suite | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Accenture | Let there be change | IDEFENSE | www.idefense.com | Vendor Advisory |
| Ipswitch, Inc. - IMail Server Patches & Upgrades | CONFIRM | www.ipswitch.com | Patch |
| Ipswitch IMail Server Multiple Vulnerabilities | BID | www.securityfocus.com | |
| SecurityTracker.com Archives - IPswitch IMail Bugs Let Remote Users View Files and Execute Arbitrary Code | SECTRACK | securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.