SMTP.Command.Format.String
Description
It indicates a possible exploit of buffer overflow vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS).
This issue is due to format string errors in the SMTP service that does not properly handle specially crafted "EXPN", "MAIL", "MAIL FROM" and "RCPT TO" commands, which could be exploited by unauthenticated remote attackers to compromise a vulnerable system.
Affected Products
Ipswitch Ipswitch Collaboration Suite 2.0 1
Ipswitch Ipswitch Collaboration Suite
Ipswitch IMail 8.20
Impact
Execute arbitrary code
Recommended Actions
Upgrade to Ipswitch Collaboration Suite 2.02 :
http://www.ipswitch.com/support/ics/updates/ics202.asp
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |