Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2931

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2931
Last Modified 07 Mar 2011 09:25:18
Published 06 Dec 2005 08:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2931

Summary

Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers to the (1) EXPN, (2) MAIL, (3) MAIL FROM, and (4) RCPT TO commands.

Vulnerable Systems

Application

  • Ipswitch Collaboration Suite 2.0

  • Ipswitch Collaboration Suite 2.01

  • Ipswitch Imail Server 8.20


References

CONFIRM - http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp

IDEFENSE - 20051206 Ipswitch Collaboration Suite SMTP Format String Vulnerability

VUPEN - ADV-2005-2782

BID - 15752

SECTRACK - 1015317

SECUNIA - 17863


Last Updated: 27 May 2016 10:40:40