CVE-2008-0944

Ipswitch Instant Messaging <= 2.0.8.1 - Denial of Service via Version Field

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0944. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1, including DoS, format-string, and arbitrary file overwrite issues. No actual exploit code is present; it is a vulnerability summary with references to external sources.

Description

Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote attackers to cause a denial of service (NULL dereference and application crash) via a version field containing zero.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Luigi Auriemma · textdoswindows
https://www.exploit-db.com/exploits/31122

The provided text describes multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1, including DoS, format-string, and arbitrary file overwrite issues. No actual exploit code is present; it is a vulnerability summary with references to external sources.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Ipswitch Instant Messaging 2.0.8.1
No auth needed
Prerequisites: Network access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/487748/100/200/threaded
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27677
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3697
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28824

Scores

EPSS 0.1154
EPSS Percentile 95.5%

Details

CWE
CWE-189
Status published
Products (1)
ipswitch/instant_messaging 2.0.8.1
Published Feb 25, 2008
Tracked Since Feb 18, 2026