CVE-2005-1256

Published: May 25, 2005Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name.

Affected (3)

Products: Ipswitch: Imail, Imail Server, Ipswitch Collaboration Suite

3 products

Ipswitch Collaboration Suite

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Ipswitch Imail	Version 8.13
Ipswitch Imail Server	Up to 8.2_hotfix_2
Ipswitch Ipswitch Collaboration Suite	All versions

References (8)

http://securitytracker.com/id?1014047

Source: cve@mitre.org

http://www.idefense.com/application/poi/display?id=244&type=vulnerabilities

Source: cve@mitre.org

Vendor Advisory

http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/13727

Source: cve@mitre.org

http://securitytracker.com/id?1014047

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.idefense.com/application/poi/display?id=244&type=vulnerabilities

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/13727

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.