Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
BID:10106
Info
Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
| Bugtraq ID: | 10106 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 13 2004 12:00AM |
| Updated: | Apr 13 2004 12:00AM |
| Credit: | This issue was announced by the vendor. |
| Vulnerable: |
Ipswitch IMail Express 8.0 3 |
| Not Vulnerable: |
Ipswitch IMail Express 8.0 5 |
Discussion
Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
A remotely exploitable buffer overrun vulnerability has been reported in Ipswitch IMail Express. This condition exists in the Web Messaging component and is due to insufficient bounds checking of HTML messages.
This issue could potentially be exploited to execute arbitrary code in the context of the software.
A remotely exploitable buffer overrun vulnerability has been reported in Ipswitch IMail Express. This condition exists in the Web Messaging component and is due to insufficient bounds checking of HTML messages.
This issue could potentially be exploited to execute arbitrary code in the context of the software.
Exploit / POC
Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
Solution:
This issue has been addressed in Ipswitch IMail Express 8.05.
Ipswitch IMail Express 8.0 3
Solution:
This issue has been addressed in Ipswitch IMail Express 8.05.
Ipswitch IMail Express 8.0 3
-
Ipswitch IMail Express 8.05
ftp://ftp.ipswitch.com/install/imailex.exe
References
Ipswitch IMail Express Web Messaging Buffer Overrun Vulnerability
References:
References:
- IMail Express Homepage (Ipswitch)