CVE-2000-0825 - Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connec

CVE-2000-0825

Summary

Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connections in which a long Host: header is sent, which causes a thread to crash.

References

http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0071.html
http://marc.info/?l=bugtraq&m=96659012127444&w=2
http://marc.info/?l=ntbugtraq&m=96654521004571&w=2
http://www.securityfocus.com/bid/2011
https://exchange.xforce.ibmcloud.com/vulnerabilities/5475

Vulnerable Configurations

cpe:2.3:a:ipswitch:imail:6.00:*:*:*:*:*:*:*
cpe:2.3:a:ipswitch:imail:6.00:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 10-10-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	2011
bugtraq	20000817 Imail Web Service Remote DoS Attack v.2
ntbugtraq	20000817 Imail Web Service Remote DoS Attack v.2
win2ksec	20000817 Imail Web Service Remote DoS Attack v.2
xf	ipswitch-imail-remote-dos(5475)

Last major update

10-10-2017 - 01:29

Published

14-11-2000 - 05:00

Last modified

10-10-2017 - 01:29