Vulnerabilities > CVE-2007-3959 - Unspecified vulnerability in Ipswitch Imserver and Ipswitch Collaboration Suite
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ipswitch
nessus
Summary
The IM Server (aka IMserve or IMserver) 2.0.5.30 and probably earlier in Ipswitch Instant Messaging before 2.07 in Ipswitch Collaboration Suite (ICS) allows remote attackers to cause a denial of service (daemon crash) via certain data to TCP port 5179 that overwrites a destructor, as reachable by the (1) DoAttachVideoSender, (2) DoAttachVideoReceiver, (3) DoAttachAudioSender, and (4) DoAttachAudioReceiver functions.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Nessus
NASL family | Windows |
NASL id | IPSWITCH_IMSERVER_207.NASL |
description | Ipswitch Instant Messaging Server, a secure, instant messaging product targeted at businesses, is installed on the remote Windows host. The version of Instant Messaging Server on the remote host reportedly allows an unauthenticated attacker to overwrite a destructor and crash the application when it attempts to process malicious traffic in the |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 25762 |
published | 2007-07-25 |
reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/25762 |
title | Ipswitch IM Server < 2.07 Multiple Function Remote DoS |
code |
|
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=566
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=566
- http://secunia.com/advisories/26154
- http://secunia.com/advisories/26154
- http://www.ipswitch.com/support/instant_messaging/patch-upgrades.asp
- http://www.ipswitch.com/support/instant_messaging/patch-upgrades.asp
- http://www.securityfocus.com/bid/25031
- http://www.securityfocus.com/bid/25031
- http://www.securitytracker.com/id?1018440
- http://www.securitytracker.com/id?1018440
- http://www.vupen.com/english/advisories/2007/2621
- http://www.vupen.com/english/advisories/2007/2621