7.5
CVE-2005-2931
- EPSS 4.74%
- Veröffentlicht 07.12.2005 01:03:00
- Zuletzt bearbeitet 16.06.2026 22:15:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Format string vulnerability in the SMTP service in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows remote attackers to execute arbitrary code via format string specifiers to the (1) EXPN, (2) MAIL, (3) MAIL FROM, and (4) RCPT TO commands.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ipswitch ≫ Imail Server Version8.20
Ipswitch ≫ Ipswitch Collaboration Suite Version2.0
Ipswitch ≫ Ipswitch Collaboration Suite Version2.01
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.74% | 0.907 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/17863
http://www.vupen.com/english/advisories/2005/2782
http://securitytracker.com/id?1015317
http://www.idefense.com/application/poi/display?id=346&type=vulnerabilities
http://www.ipswitch.com/support/imail/releases/imail_professional/im822.asp
http://www.securityfocus.com/bid/15752