CVE-2006-4379

Ipswitch Collaboration Suite SMTP Server Stack Overflow Vulnerability

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an '@' character and before a ':' character.

Desbordamiento de búfer basado en montón en SMTP Daemon en Ipswitch Collaboration 2006 Suite Premium y Standard Editions, IMail, IMail Plus, e IMail Secure, permite a un atacante remoto ejecutar código de su elección a través de una cadena larga situada después del caracter “@” y antes del carácter “: ”.

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ipswitch Collaboration Suite and IMail. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the SMTP daemon. A lack of bounds checking during the parsing of long strings contained within the characters '@' and ':' leads to a stack overflow vulnerability. Exploitation can result in code execution or a denial of service.

*Credits: Anonymous

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-08-28 CVE Reserved
2006-09-08 CVE Published
2006-10-19 First Exploit
2024-07-29 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (13)

URL	Tag	Source
http://securitytracker.com/id?1016803	Vdb Entry
http://securitytracker.com/id?1016804	Vdb Entry
http://www.ipswitch.com/support/imail/releases/im20061.asp	X_refsource_confirm
http://www.securityfocus.com/archive/1/445521/100/0/threaded	Mailing List
http://www.vupen.com/english/advisories/2006/3496	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/28789	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/2601	2006-10-19
https://www.exploit-db.com/exploits/3264	2007-02-04
https://www.exploit-db.com/exploits/3265	2007-02-04

URL	Date	SRC
http://www.ipswitch.com/support/ics/updates/ics20061.asp	2018-10-17
http://www.securityfocus.com/bid/19885	2018-10-17
http://www.zerodayinitiative.com/advisories/ZDI-06-028.html	2018-10-17

URL	Date	SRC
http://secunia.com/advisories/21795	2018-10-17

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Ipswitch Search vendor "Ipswitch"		Imail Plus Search vendor "Ipswitch" for product "Imail Plus"				2006 Search vendor "Ipswitch" for product "Imail Plus" and version "2006"		-		Affected
Ipswitch Search vendor "Ipswitch"		Imail Secure Server Search vendor "Ipswitch" for product "Imail Secure Server"				2006 Search vendor "Ipswitch" for product "Imail Secure Server" and version "2006"		-		Affected
Ipswitch Search vendor "Ipswitch"		Ipswitch Collaboration Suite Search vendor "Ipswitch" for product "Ipswitch Collaboration Suite"				2006_premium Search vendor "Ipswitch" for product "Ipswitch Collaboration Suite" and version "2006_premium"		-		Affected
Ipswitch Search vendor "Ipswitch"		Ipswitch Collaboration Suite Search vendor "Ipswitch" for product "Ipswitch Collaboration Suite"				2006_standard Search vendor "Ipswitch" for product "Ipswitch Collaboration Suite" and version "2006_standard"		-		Affected