Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
BID:17063
Info
Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 17063 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2005-3526 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 10 2006 12:00AM |
| Updated: | Feb 20 2007 03:56PM |
| Credit: | Discovered by TippingPoint. |
| Vulnerable: |
Ipswitch Ipswitch Collaboration Suite Standard Edition 2006 Ipswitch Ipswitch Collaboration Suite Premium Edition 2006 Ipswitch IMail Server 2006 Ipswitch IMail Secure Server 2006 |
| Not Vulnerable: |
Ipswitch Ipswitch Collaboration Suite Standard Edition 2006.03 Ipswitch Ipswitch Collaboration Suite Premium Edition 2006.03 Ipswitch IMail Server 2006.03 Ipswitch IMail Secure Server 2006.03 |
Discussion
Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
Ipswitch IMail Server / Collaboration Suite are prone to a remote buffer-overflow vulnerability.
The vulnerability presents itself when the server handles a specially crafted IMAP FETCH command.
This may result in memory corruption leading to a denial-of-service condition or arbitrary code execution.
Ipswitch IMail Server / Collaboration Suite are prone to a remote buffer-overflow vulnerability.
The vulnerability presents itself when the server handles a specially crafted IMAP FETCH command.
This may result in memory corruption leading to a denial-of-service condition or arbitrary code execution.
Exploit / POC
Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
Solution:
The vendor has released fixes to address this issue.
Ipswitch IMail Secure Server 2006
Ipswitch IMail Server 2006
Ipswitch Ipswitch Collaboration Suite Premium Edition 2006
Ipswitch Ipswitch Collaboration Suite Standard Edition 2006
Solution:
The vendor has released fixes to address this issue.
Ipswitch IMail Secure Server 2006
-
Ipswitch IMail Secure 2006.1
ftp://ftp.ipswitch.com/Ipswitch/Product_Downloads/IMail_Secure.exe
Ipswitch IMail Server 2006
-
Ipswitch IMail 2006.1
ftp://ftp.ipswitch.com/Ipswitch/Product_Downloads/IMail.exe
Ipswitch Ipswitch Collaboration Suite Premium Edition 2006
-
Ipswitch Ipswitch Collaboration Suite 2006.1
ftp://ftp.ipswitch.com/Ipswitch/Product_Downloads/ICS_Premium.exe
Ipswitch Ipswitch Collaboration Suite Standard Edition 2006
-
Ipswitch Ipswitch Collaboration Suite 2006.1
ftp://ftp.ipswitch.com/Ipswitch/Product_Downloads/ICS_Standard.exe
References
Ipswitch IMail Server / Collaboration Suite IMAP FETCH Remote Buffer Overflow Vulnerability
References:
References: