EIP-2026-115454

PRE-CVE

Ipswitch IMail 5.0.5/5.0.6/5.0.7 - POP3 Denial of Service / Buffer Overflow (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115454. PoCs published by Interrupt.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in the username field of IMAIL 5.07 POP3 server. It sends a crafted 'USER' command with a long string of 'A' characters to trigger a denial of service (DoS) condition.

Description

Ipswitch IMail 5.0.5/5.0.6/5.0.7 - POP3 Denial of Service / Buffer Overflow (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Interrupt · cdoswindows

https://www.exploit-db.com/exploits/19616

View Code ZIP pw:eip

This exploit demonstrates a buffer overflow vulnerability in the username field of IMAIL 5.07 POP3 server. It sends a crafted 'USER' command with a long string of 'A' characters to trigger a denial of service (DoS) condition.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: IMAIL 5.07 POP3 server

No auth needed

Prerequisites: Network access to the target POP3 server

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026