Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0297

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0297
Last Modified 10 Sep 2008 03:25:44
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0297

Summary

Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via an LDAP message with a large tag length.

Vulnerable Systems

Application

  • Ipswitch Imail 8.0.3

  • Ipswitch Imail 8.0.5


References

CERT-VN - VU#972334

BID - 9682

XF - imail-ldap-tag-bo(15243)

CONFIRM - http://www.ipswitch.com/support/imail/releases/imail_professional/im805HF2.html

OSVDB - 3984

IDEFENSE - 20040217 Ipswitch IMail LDAP Daemon Remote Buffer Overflow


Last Updated: 27 May 2016 10:38:33