Vulnerability Description
Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonstrated with the EXAMINE command.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Floosietek | Ftgate | 4_4.1 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2005-11/0213.html
- http://secunia.com/advisories/17609Vendor Advisory
- http://www.lucaercoli.it/advs/FTGate4.txtExploitVendor Advisory
- http://www.osvdb.org/20917
- http://www.securityfocus.com/bid/15449Exploit
- http://www.vupen.com/english/advisories/2005/2478Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23101
- http://archives.neohapsis.com/archives/bugtraq/2005-11/0213.html
- http://secunia.com/advisories/17609Vendor Advisory
- http://www.lucaercoli.it/advs/FTGate4.txtExploitVendor Advisory
- http://www.osvdb.org/20917
- http://www.securityfocus.com/bid/15449Exploit
- http://www.vupen.com/english/advisories/2005/2478Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23101
FAQ
What is CVE-2005-3640?
CVE-2005-3640 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonstr...
How severe is CVE-2005-3640?
CVE-2005-3640 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3640?
Check the references section above for vendor advisories and patch information. Affected products include: Floosietek Ftgate.