CVE-2005-2923

Ipswitch IMail Server 8.20 - Denial of Service via Long IMAP LIST Command Argument

Title source: llm
STIX 2.1

Description

The IMAP server in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to cause a denial of service (crash) via a long argument to the LIST command, which causes IMail Server to reference invalid memory.

References (5)

Core 5
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17863
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2782
Patch, Vendor Advisory third-party-advisory x_refsource_idefense
http://www.idefense.com/application/poi/display?id=347&type=vulnerabilities
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015318
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15753

Scores

EPSS 0.1082
EPSS Percentile 95.3%

Details

CWE
CWE-20
Status published
Products (3)
ipswitch/imail_server 8.20
ipswitch/ipswitch_collaboration_suite 2.0
ipswitch/ipswitch_collaboration_suite 2.01
Published Dec 07, 2005
Tracked Since Feb 18, 2026