CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1252
https://notcve.org/view.php?id=CVE-2005-1252
Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in the query string argument in a GET request to a non-existent .jsp file. • http://securitytracker.com/id?1014047 http://www.idefense.com/application/poi/display?id=242&type=vulnerabilities http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html http://www.securityfocus.com/bid/13727 •
CVSS: 5.0EPSS: 5%CPEs: 3EXPL: 0CVE-2005-1254
https://notcve.org/view.php?id=CVE-2005-1254
Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (crash) via a SELECT command with a large argument. • http://securitytracker.com/id?1014047 http://www.idefense.com/application/poi/display?id=241&type=vulnerabilities http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html http://www.securityfocus.com/bid/13727 •
CVSS: 10.0EPSS: 24%CPEs: 4EXPL: 3CVE-2005-1255 – IPSwitch IMail Server 8.15 - IMAPD Remote Code Execution
https://notcve.org/view.php?id=CVE-2005-1255
Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character. • https://www.exploit-db.com/exploits/1124 https://www.exploit-db.com/exploits/3627 https://www.exploit-db.com/exploits/1035 http://securitytracker.com/id?1014047 http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html http://www.securityfocus.com/bid/13727 •
CVSS: 10.0EPSS: 76%CPEs: 3EXPL: 0CVE-2005-1256
https://notcve.org/view.php?id=CVE-2005-1256
Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name. • http://securitytracker.com/id?1014047 http://www.idefense.com/application/poi/display?id=244&type=vulnerabilities http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html http://www.securityfocus.com/bid/13727 •
CVSS: 5.0EPSS: 1%CPEs: 28EXPL: 0CVE-2004-2422
https://notcve.org/view.php?id=CVE-2004-2422
Multiple features in Ipswitch IMail Server before 8.13 allow remote attackers to cause a denial of service (crash) via (1) a long sender field to the Queue Manager or (2) a long To field to the Web Messaging component. • http://secunia.com/advisories/12453 http://securitytracker.com/id?1011146 http://support.ipswitch.com/kb/IM-20040902-DM01.htm#FIXES http://www.osvdb.org/9552 http://www.osvdb.org/9554 http://www.securityfocus.com/bid/11106 https://exchange.xforce.ibmcloud.com/vulnerabilities/17219 https://exchange.xforce.ibmcloud.com/vulnerabilities/17222 •