Vulnerability Details CVE-2005-2931
Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers to the (1) EXPN, (2) MAIL, (3) MAIL FROM, and (4) RCPT TO commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.044
EPSS Ranking 88.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/17863
- http://securitytracker.com/id?1015317
- http://www.idefense.com/application/poi/display?id=346&type=vulnerabilities
- http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp
- http://www.securityfocus.com/bid/15752
- http://www.vupen.com/english/advisories/2005/2782
- http://secunia.com/advisories/17863
- http://securitytracker.com/id?1015317
- http://www.idefense.com/application/poi/display?id=346&type=vulnerabilities
- http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp
- http://www.securityfocus.com/bid/15752
- http://www.vupen.com/english/advisories/2005/2782
Products affected by CVE-2005-2931
-
cpe:2.3:a:ipswitch:imail_server:8.20
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.0
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.01