Vulnerabilities > Ipswitch
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-10-31 | CVE-2007-4345 | Buffer Errors vulnerability in Ipswitch Imail Client and Imail Server Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail Server 2006.22, allows remote attackers to execute arbitrary code via a long boundary parameter in a multipart MIME e-mail message. | 7.5 |
| 2007-09-26 | CVE-2007-5094 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ipswitch Imail Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by itself on a line in the header, and a long Content-Transfer-Encoding header line. | 7.5 |
| 2007-08-28 | CVE-2007-4555 | Cross-Site Scripting vulnerability in Ipswitch WS FTP Cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP allows remote attackers to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is displayed by the view log option in the administration interface. | 4.3 |
| 2007-07-24 | CVE-2007-3959 | Remote Denial of Service vulnerability in Ipswitch Imserver and Ipswitch Collaboration Suite The IM Server (aka IMserve or IMserver) 2.0.5.30 and probably earlier in Ipswitch Instant Messaging before 2.07 in Ipswitch Collaboration Suite (ICS) allows remote attackers to cause a denial of service (daemon crash) via certain data to TCP port 5179 that overwrites a destructor, as reachable by the (1) DoAttachVideoSender, (2) DoAttachVideoReceiver, (3) DoAttachAudioSender, and (4) DoAttachAudioReceiver functions. | 5.0 |
| 2007-07-21 | CVE-2007-3927 | Buffer Overflow vulnerability in Ipswitch Imail Server and Ipswitch Collaboration Suite Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 (1) allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and (2) allow attackers to have an unknown impact via an unspecified vector related to "subscribe." | 10.0 |
| 2007-07-21 | CVE-2007-3926 | Denial-Of-Service vulnerability in Ipswitch Imail Server 2006.2 Ipswitch IMail Server 2006 before 2006.21 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors involving an "overwritten destructor." | 7.8 |
| 2007-07-21 | CVE-2007-3925 | Buffer Errors vulnerability in Ipswitch Imail Server and Ipswitch Collaboration Suite Multiple buffer overflows in the IMAP service (imapd32.exe) in Ipswitch IMail Server 2006 before 2006.21 allow remote authenticated users to execute arbitrary code via the (1) Search or (2) Search Charset command. | 6.5 |
| 2007-07-17 | CVE-2007-3823 | Denial-Of-Service vulnerability in Ipswitch WS FTP 7.5.29.0 The Logging Server (Logsrv.exe) in IPSwitch WS_FTP 7.5.29.0 allows remote attackers to cause a denial of service (daemon crash) by sending a crafted packet containing a long string to port 5151/udp. | 7.8 |
| 2007-04-24 | CVE-2007-2213 | Remote Denial of Service vulnerability in Ipswitch WS FTP 2007 Unspecified vulnerability in the Initialize function in NetscapeFTPHandler in WS_FTP Home and Professional 2007 allows remote attackers to cause a denial of service (NULL dereference and application crash) via unspecified vectors related to "improper arguments." | 7.8 |
| 2007-03-23 | CVE-2007-1637 | Remote Security vulnerability in Imail Premium Multiple buffer overflows in the IMAILAPILib ActiveX control (IMailAPI.dll) in Ipswitch IMail Server before 2006.2 allow remote attackers to execute arbitrary code via the (1) WebConnect and (2) Connect members in the (a) IMailServer control; (3) Sync3 and (4) Init3 members in the (b) IMailLDAPService control; and the (5) SetReplyTo member in the (c) IMailUserCollection control. | 9.3 |