Vulnerability Details CVE-2005-2931
Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers to the (1) EXPN, (2) MAIL, (3) MAIL FROM, and (4) RCPT TO commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.145
EPSS Ranking 94.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/17863
- http://securitytracker.com/id?1015317
- http://www.idefense.com/application/poi/display?id=346&type=vulnerabilities
- http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp
- http://www.securityfocus.com/bid/15752
- http://www.vupen.com/english/advisories/2005/2782
- http://secunia.com/advisories/17863
- http://securitytracker.com/id?1015317
- http://www.idefense.com/application/poi/display?id=346&type=vulnerabilities
- http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp
- http://www.securityfocus.com/bid/15752
- http://www.vupen.com/english/advisories/2005/2782
Products affected by CVE-2005-2931
-
cpe:2.3:a:ipswitch:imail_server:8.20
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.0
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.01