CVE-2007-3927

Ipswitch Imail Server < 2006.2 - Buffer Overflow

Title source: rule

Description

Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 (1) allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and (2) allow attackers to have an unknown impact via an unspecified vector related to "subscribe."

Exploits (1)

exploitdb WORKING POC VERIFIED

by ZhenHan.Liu · perlremotewindows

https://www.exploit-db.com/exploits/4228

View Code ZIP pw:eip

References (9)

[Patch] http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease

[Patch] http://www.securityfocus.com/bid/24962

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35504

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35505

[Third Party Advisory, VDB Entry] http://osvdb.org/45818

[Third Party Advisory, VDB Entry] http://osvdb.org/45819

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1018421

[Third Party Advisory] http://secunia.com/advisories/26123

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/2574

Scores

EPSS 0.7229

EPSS Percentile 98.8%

Details

Status published

Products (2)

ipswitch/imail_server < 2006.2

ipswitch/ipswitch_collaboration_suite < 2006.2

Published Jul 21, 2007

Tracked Since Feb 18, 2026