exploitDog

CVE-2007-1637

Опубликовано: 23 мар. 2007

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Multiple buffer overflows in the IMAILAPILib ActiveX control (IMailAPI.dll) in Ipswitch IMail Server before 2006.2 allow remote attackers to execute arbitrary code via the (1) WebConnect and (2) Connect members in the (a) IMailServer control; (3) Sync3 and (4) Init3 members in the (b) IMailLDAPService control; and the (5) SetReplyTo member in the (c) IMailUserCollection control.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ipswitch:imail:2006:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail_premium:2006:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00973

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-586g-p3j5-gxcr

github

почти 4 года назад

Multiple buffer overflows in the IMAILAPILib ActiveX control (IMailAPI.dll) in Ipswitch IMail Server before 2006.2 allow remote attackers to execute arbitrary code via the (1) WebConnect and (2) Connect members in the (a) IMailServer control; (3) Sync3 and (4) Init3 members in the (b) IMailLDAPService control; and the (5) SetReplyTo member in the (c) IMailUserCollection control.

EPSS

Процентиль: 76%

0.00973

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other