CVE-2005-1255

IMail <8.2 - Buffer Overflow

Title source: llm

Description

Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Heretic2 · cremotewindows

https://www.exploit-db.com/exploits/3627

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by kingcope · perlremotelinux

https://www.exploit-db.com/exploits/1124

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by nolimit · cremotewindows

https://www.exploit-db.com/exploits/1035

View Code ZIP pw:eip

References (4)

[Patch] http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/13727

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1014047

[Vendor Advisory] http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities

Scores

EPSS 0.1679

EPSS Percentile 95.0%

Details

Status published

Products (4)

ipswitch/imail 8.12

ipswitch/imail 8.13

ipswitch/imail_server < 8.2_hotfix_2

ipswitch/ipswitch_collaboration_suite

Published May 25, 2005

Tracked Since Feb 18, 2026