IMAP.Authentication.CRAM-MD5.Buffer.Overflow
Description
This indicates an attempt to exploit a vulnerability in the IMAP services of IBM Lotus Domino or Ipswitch IMail.
The vulnerability is caused by an error when the affected software handles
a malicious IMAP CRAM-MD5 authentication packet. It allows a remote attacker to execute arbitrary code via sending a crafted IMAP message.
Affected Products
Ipswitch IMail 8.13 and earlier.
IBM Lotus Domino versions 6.x
IBM Lotus Domino versions 7.x
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to Ipswitch IMail version 8.14.
Upgrade to IBM Lotus Domino version 6.5.6 or 7.0.2 Fix Pack 1 (FP1):
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |