Ipswitch IMail Server/Collaboration Suite IMAP FETCH Vulnerability - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Ipswitch IMail Server/Collaboration Suite IMAP FETCH Vulnerability

Secunia Advisory:	SA19168
Release Date:	2006-03-10
Last Update:	2006-03-14

Critical:	Moderately critical
Impact:	DoS
Where:	From remote
Solution Status:	Vendor Patch

Software:	Ipswitch Collaboration Suite (ICS) 2006 Ipswitch IMail Server 2006

CVE reference:	CVE-2005-3526 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: FistFuXXer has reported a vulnerability in Ipswitch IMail Server/Collaboration Suite, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the handling of the IMAP FETCH command. This can be exploited to cause a buffer overflow, which crashes the server and allows arbitrary code execution via an overly long argument. The vulnerability has been reported in the following versions: * Ipswitch Collaboration Suite 2006 Premium Edition * Ipswitch Collaboration Suite 2006 Standard Edition * IMail Secure Server 2006 * IMail Server 2006 Solution: Update to version 2006.03. Ipswitch Collaboration Suite 2006 Premium Edition: ftp://ftp.ipswitch.com/Ipswitch/Product_Support/ICS/ics-premium200603.exe Ipswitch Collaboration Suite 2006 Standard Edition: ftp://ftp.ipswitch.com/Ipswitch/Product_Support/ICS/ics-standard200603.exe IMail Secure Server 2006: ftp://ftp.ipswitch.com/Ipswitch/Product_Support/IMail/imailsecure200603.exe IMail Server 2006: ftp://ftp.ipswitch.com/Ipswitch/Product_Support/IMail/imail200603.exe Provided and/or discovered by: Manuel Santamarina Suarez (FistFuXXer). Changelog: 2006-03-14: Added information from 3Com's Zero Day Initiative. Updated "Critical", "Description" and "Original Advisory" sections. Original Advisory: Ipswitch: http://www.ipswitch.com/support/ics/updates/ics200603prem.asp http://www.ipswitch.com/support/ics/updates/ics200603stan.asp http://www.ipswitch.com/support/imail/releases/imsec200603.asp http://www.ipswitch.com/support/imail/releases/im200603.asp 3Com's Zero Day Initiative: http://www.zerodayinitiative.com/advisories/ZDI-06-003.html



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

5 Related Secunia Security Advisories

1. Ipswitch IMail Server IMail Client Buffer Overflow Vulnerability

2. Ipswitch IMail Server "SEARCH" Command Multiple Buffer Overflows

3. Ipswitch IMail Server/Collaboration Suite Multiple Buffer Overflows

4. Ipswitch IMail Server/Collaboration Suite IMAILAPI.DLL ActiveX Control Buffer Overflows

5. Ipswitch IMail Server SMTP Service Buffer Overflow Vulnerability

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	phpBB reveals user IPs

2.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

3.	GpsDrive "geo-code" Insecure Temporary Files

4.	Blogn Cross-Site Scripting and Cross-Site Request Forgery

5.	Adium MSN SLP Message Integer Overflow Vulnerabilities

6.	geo-* Insecure Temporary Files

7.	Sun Solaris Kernel Covert Channel Security Bypass

8.	dotProject SQL Injection and Cross-Site Scripting

9.	Acoustica Mixcraft ".mx4" File Processing Buffer Overflow

10.	IBM WebSphere Application Server for z/OS HTTP Server mod_proxy_ftp Vulnerability