exploitDog

CVE-2007-5094

Опубликовано: 26 сент. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by itself on a line in the header, and a long Content-Transfer-Encoding header line.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ipswitch:imail:8.0.3:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail:8.0.5:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail:8.1:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail:8.01:*:*:*:*:*:*:*

cpe:2.3:a:ipswitch:imail:8.11:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05266

Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-mp6x-6v97-mg8p

github

почти 4 года назад

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by itself on a line in the header, and a long Content-Transfer-Encoding header line.

EPSS

Процентиль: 90%

0.05266

Низкий

7.5 High

CVSS2

Дефекты

CWE-119