Page 4 of 21 results (0.008 seconds)

CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0

Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html http://www.ipswitch.com/Support/IMail/news.html http://www.securityfocus.com/bid/3432 •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0

The webmail interface for Ipswitch IMail 7.04 and earlier allows remote authenticated users to cause a denial of service (crash) via a mailbox name that contains a large number of . (dot) or other characters to programs such as (1) readmail.cgi or (2) printmail.cgi, possibly due to a buffer overflow that may allow execution of arbitrary code. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html http://www.ipswitch.com/Support/IMail/news.html http://www.securityfocus.com/bid/3427 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows remote attackers to execute arbitrary code via a long From: header. • http://archives.neohapsis.com/archives/bugtraq/2001-04/0433.html http://ipswitch.com/Support/IMail/news.html http://www.osvdb.org/5610 https://exchange.xforce.ibmcloud.com/vulnerabilities/6445 •

CVSS: 6.4EPSS: 0%CPEs: 6EXPL: 1

The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. • https://www.exploit-db.com/exploits/20182 http://marc.info/?l=bugtraq&m=96767207207553&w=2 http://www.ipswitch.com/Support/IMail/news.html http://www.securityfocus.com/bid/1617 •

CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0

Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command. • http://marc.info/?l=bugtraq&m=95505800117143&w=2 http://support.ipswitch.com/kb/IM-20000208-DM02.htm http://www.securityfocus.com/bid/1094 •