Vulnerability Details CVE-2006-3552
Premium Anti-Spam in Ipswitch IMail Secure Server 2006 and Collaboration Suite 2006 Premium, when using a certain .dat file in the StarEngine /data directory from 20060630 or earlier, does not properly receive and implement bullet signature updates, which allows context-dependent attackers to use the server for spam transmission.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.0%
CVSS Severity
CVSS v2 Score 6.4
References
- http://ipswitch.com/support/ics/updates/security_advisory_20060630.asp
- http://ipswitch.com/support/imail/releases/security_advisory_20060630.asp
- http://securitytracker.com/id?1016419
- http://securitytracker.com/id?1016420
- http://www.vupen.com/english/advisories/2006/2653
- http://ipswitch.com/support/ics/updates/security_advisory_20060630.asp
- http://ipswitch.com/support/imail/releases/security_advisory_20060630.asp
- http://securitytracker.com/id?1016419
- http://securitytracker.com/id?1016420
- http://www.vupen.com/english/advisories/2006/2653
Products affected by CVE-2006-3552
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_premium
-
cpe:2.3:a:ipswitch:ipswitch_secure_server:2006_premium