- Description
- Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an '@' character and before a ':' character.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F0C6A165-8B6B-4D0F-B2F7-3A5CDA4BA072"
},
{
"criteria": "cpe:2.3:a:ipswitch:imail_secure_server:2006:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A01A5A7C-A405-4A3A-860C-7B954011A9B7"
},
{
"criteria": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_premium:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4031612D-7151-45DF-9AF6-7DEA14FA13B7"
},
{
"criteria": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95104B1C-0B67-43FF-A93C-9296707B3DA9"
}
],
"operator": "OR"
}
]
}
]