Vulnerability Description
Multiple buffer overflows in the IMAP service (imapd32.exe) in Ipswitch IMail Server 2006 before 2006.21 allow remote authenticated users to execute arbitrary code via the (1) Search or (2) Search Charset command.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ipswitch | Imail Server | <= 2006.2 |
| Ipswitch | Ipswitch Collaboration Suite | <= 2006.2 |
Related Weaknesses (CWE)
References
- http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelePatch
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
- http://secunia.com/advisories/26123Vendor Advisory
- http://www.securityfocus.com/bid/24962Patch
- http://www.securitytracker.com/id?1018419
- http://www.vupen.com/english/advisories/2007/2574
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35496
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35500
- http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelePatch
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
- http://secunia.com/advisories/26123Vendor Advisory
- http://www.securityfocus.com/bid/24962Patch
- http://www.securitytracker.com/id?1018419
- http://www.vupen.com/english/advisories/2007/2574
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35496
FAQ
What is CVE-2007-3925?
CVE-2007-3925 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Multiple buffer overflows in the IMAP service (imapd32.exe) in Ipswitch IMail Server 2006 before 2006.21 allow remote authenticated users to execute arbitrary code via the (1) Search or (2) Search Cha...
How severe is CVE-2007-3925?
CVE-2007-3925 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3925?
Check the references section above for vendor advisories and patch information. Affected products include: Ipswitch Imail Server, Ipswitch Ipswitch Collaboration Suite.