Intrusion PreventionIpswitch.IMail.Server.Login.Stack.Overflow
Description
This indicates an attack attempt against a Buffer Overflow vulnerability in Ipswitch IMail Server.
The vulnerability is caused by an error when the vulnerable software handles a malicious Login command. It allows a remote attacker to execute arbitrary code via sending a crafted command to a vulnerable server.
Affected Products
Ipswitch IMail 8.12
Ipswitch IMail 8.13
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT Workstation 4.0 SP6a
- Microsoft Windows NT Workstation 4.0 SP5
- Microsoft Windows NT Workstation 4.0 SP4
- Microsoft Windows NT Workstation 4.0 SP3
- Microsoft Windows NT Workstation 4.0 SP2
- Microsoft Windows NT Workstation 4.0 SP1
- Microsoft Windows NT Workstation 4.0
- Microsoft Windows XP Home
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
ftp://ftp.ipswitch.com/Ipswitch/Product_Support/IMail/imail82hf2.exe
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 31889 |
| Created | Jun 06, 2012 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2005-1255 |
| Exploit Prediction Score | 38.21% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |