Detections
Analytics
Ipswitch IMail Server < 2006.21 Multiple Vulnerabilities
medium Nessus Network Monitor Plugin ID 4141
Synopsis
The remote mail server is affected by multiple vulnerabilities.Description
The remote host is running Ipswitch IMail, a commercial messaging and collaboration suite for Windows. According to its banner, the version of Ipswitch IMail installed on the remote host has several buffer overflows in its IMAP service component, one of which can be exploited to execute arbitrary code with SYSTEM privileges prior to authentication. In addition, there is also an denial of service issue that can cause the IM server to crash without authentication.Solution
Upgrade to version 2006.21 or higher.See Also
http://www.securityfocus.com/archive/1/474040/30/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-07-042.html
http://www.zerodayinitiative.com/advisories/ZDI-07-043.html
http://archives.neohapsis.com/archives/bugtraq/2007-07/0276.html
http://archives.neohapsis.com/archives/bugtraq/2007-07/0278.html
http://www.ipswitch.com/support/imail/releases/im200621.asp
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
Plugin Details
Severity: Medium
ID: 4141
Family: SMTP Servers
Published: 7/19/2007
Updated: 3/6/2019
Nessus ID: 25737
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Medium
Base Score: 5.8
Temporal Score: 4.8
Vector: CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P
CVSS v3
Risk Factor: Medium
Base Score: 6.3
Temporal Score: 5.9
Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:ipswitch:imail_server
Exploitable With
Metasploit (Ipswitch IMail IMAP SEARCH Buffer Overflow)
Reference Information
CVE: CVE-2007-3925, CVE-2007-3927
BID: 24962