Vulnerability Details CVE-2007-3927
Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 (1) allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and (2) allow attackers to have an unknown impact via an unspecified vector related to "subscribe."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.698
EPSS Ranking 98.6%
CVSS Severity
CVSS v2 Score 10.0
References
- http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease
- http://osvdb.org/45818
- http://osvdb.org/45819
- http://secunia.com/advisories/26123
- http://www.securityfocus.com/bid/24962
- http://www.securitytracker.com/id?1018421
- http://www.vupen.com/english/advisories/2007/2574
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35504
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35505
- http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease
- http://osvdb.org/45818
- http://osvdb.org/45819
- http://secunia.com/advisories/26123
- http://www.securityfocus.com/bid/24962
- http://www.securitytracker.com/id?1018421
- http://www.vupen.com/english/advisories/2007/2574
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35504
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35505
Products affected by CVE-2007-3927
-
cpe:2.3:a:ipswitch:imail_server:12.3
-
cpe:2.3:a:ipswitch:imail_server:12.4
-
cpe:2.3:a:ipswitch:imail_server:12.4.1.15
-
cpe:2.3:a:ipswitch:imail_server:12.5.5
-
cpe:2.3:a:ipswitch:imail_server:2006.2
-
cpe:2.3:a:ipswitch:imail_server:8.2
-
cpe:2.3:a:ipswitch:imail_server:8.20
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.0
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.01
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2.07
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006.02
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006.2
-
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:8.15