CVE-2005-1255

Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.

Published: May 25, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1255
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ipswitch / ipswitch_collaboration_suite	-	-
ipswitch / imail	8.12	8.12.x
ipswitch / imail	8.13	8.13.x
ipswitch / imail_server	-	8.2_hotfix_2.x

http://securitytracker.com/id?1014047
http://www.idefense.com/application/poi/display?id=243&type=vulnerabilities
http://www.ipswitch.com/support/imail/releases/imail_professional/im82hf2.html
http://www.securityfocus.com/bid/13727

Vulnerability Database

289,697

CVE-2005-1255