CVE-2005-1256: Buffer Overflow
First published: Wed May 25 2005(Updated: )
Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ipswitch IMail | =8.13 | |
| Ipswitch IMail Secure Server | <=8.2_hotfix_2 | |
| Ipswitch Ipswitch Collaboration Suite |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-1256?
CVE-2005-1256 is classified as a high severity vulnerability due to its ability to allow remote authenticated users to execute arbitrary code.
How do I fix CVE-2005-1256?
To fix CVE-2005-1256, upgrade to IMail Server version 8.2 Hotfix 2 or later.
Who is affected by CVE-2005-1256?
CVE-2005-1256 affects users of Ipswitch Collaboration Suite and IMail versions prior to 8.2 Hotfix 2.
What type of vulnerability is CVE-2005-1256?
CVE-2005-1256 is a stack-based buffer overflow vulnerability.
Can CVE-2005-1256 be exploited remotely?
Yes, CVE-2005-1256 can be exploited remotely by authenticated users through a specially crafted STATUS command.
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/remedy
- agent/weakness
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/ipswitch
- canonical/ipswitch imail
- version/ipswitch imail/8.13
- canonical/ipswitch imail secure server
- version/ipswitch imail secure server/8.2_hotfix_2
- canonical/ipswitch ipswitch collaboration suite