cvelistv5 - cve-2006-4379

CVE-2006-4379 (GCVE-0-2006-4379)

Vulnerability from cvelistv5

Published

2006-09-08 21:00

Modified

2024-08-07 19:06

Severity ?

CWE

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/21795	Vendor Advisory
cve@mitre.org	http://securitytracker.com/id?1016803
cve@mitre.org	http://securitytracker.com/id?1016804
cve@mitre.org	http://www.ipswitch.com/support/ics/updates/ics20061.asp	Patch
cve@mitre.org	http://www.ipswitch.com/support/imail/releases/im20061.asp
cve@mitre.org	http://www.securityfocus.com/archive/1/445521/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/19885	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2006/3496
cve@mitre.org	http://www.zerodayinitiative.com/advisories/ZDI-06-028.html	Patch
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/28789
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/21795	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1016803
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1016804
af854a3a-2127-422b-91ae-364da2661108	http://www.ipswitch.com/support/ics/updates/ics20061.asp	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.ipswitch.com/support/imail/releases/im20061.asp
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/445521/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/19885	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/3496
af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-06-028.html	Patch
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/28789

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:06:07.631Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "21795",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21795"
          },
          {
            "name": "20060907 ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
          },
          {
            "name": "1016804",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1016804"
          },
          {
            "name": "19885",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/19885"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
          },
          {
            "name": "ipswitch-smtp-daemon-code-execution(28789)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
          },
          {
            "name": "1016803",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1016803"
          },
          {
            "name": "ADV-2006-3496",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/3496"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-09-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "21795",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21795"
        },
        {
          "name": "20060907 ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
        },
        {
          "name": "1016804",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1016804"
        },
        {
          "name": "19885",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/19885"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
        },
        {
          "name": "ipswitch-smtp-daemon-code-execution(28789)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
        },
        {
          "name": "1016803",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1016803"
        },
        {
          "name": "ADV-2006-3496",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/3496"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4379",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "21795",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/21795"
            },
            {
              "name": "20060907 ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
            },
            {
              "name": "1016804",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1016804"
            },
            {
              "name": "19885",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/19885"
            },
            {
              "name": "http://www.ipswitch.com/support/imail/releases/im20061.asp",
              "refsource": "CONFIRM",
              "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
            },
            {
              "name": "ipswitch-smtp-daemon-code-execution(28789)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
            },
            {
              "name": "http://www.ipswitch.com/support/ics/updates/ics20061.asp",
              "refsource": "CONFIRM",
              "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html",
              "refsource": "MISC",
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
            },
            {
              "name": "1016803",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1016803"
            },
            {
              "name": "ADV-2006-3496",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/3496"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-4379",
    "datePublished": "2006-09-08T21:00:00",
    "dateReserved": "2006-08-28T00:00:00",
    "dateUpdated": "2024-08-07T19:06:07.631Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-4379\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-09-08T21:04:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en mont\u00f3n en SMTP Daemon en Ipswitch Collaboration 2006 Suite Premium y Standard Editions, IMail, IMail Plus, e IMail Secure, permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una cadena larga situada despu\u00e9s del caracter \u201c@\u201d y antes del car\u00e1cter \u201c: \u201d.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":true,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0C6A165-8B6B-4D0F-B2F7-3A5CDA4BA072\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ipswitch:imail_secure_server:2006:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A01A5A7C-A405-4A3A-860C-7B954011A9B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_premium:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4031612D-7151-45DF-9AF6-7DEA14FA13B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95104B1C-0B67-43FF-A93C-9296707B3DA9\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/21795\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1016803\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1016804\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ipswitch.com/support/ics/updates/ics20061.asp\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.ipswitch.com/support/imail/releases/im20061.asp\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/445521/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/19885\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/3496\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-06-028.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/28789\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/21795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1016803\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1016804\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ipswitch.com/support/ics/updates/ics20061.asp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.ipswitch.com/support/imail/releases/im20061.asp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/445521/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/19885\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/3496\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-06-028.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/28789\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

ghsa-6cpx-26v9-cp5m

Vulnerability from github

Published

2022-05-01 07:18

Modified

2022-05-01 07:18

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-4379"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-09-08T21:04:00Z",
    "severity": "HIGH"
  },
  "details": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character.",
  "id": "GHSA-6cpx-26v9-cp5m",
  "modified": "2022-05-01T07:18:00Z",
  "published": "2022-05-01T07:18:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4379"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/21795"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1016803"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1016804"
    },
    {
      "type": "WEB",
      "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
    },
    {
      "type": "WEB",
      "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/19885"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/3496"
    },
    {
      "type": "WEB",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an '@' character and before a ':' character. The Ipswitch IMail Server is vulnerable to a buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition. Authentication is not required to exploit this vulnerability.The specific flaw exists within the SMTP daemon. A lack of bounds checking during the parsing of long strings contained within the characters '@' and ':' leads to a stack overflow vulnerability. Exploitation can result in code execution or a denial of service. Ipswitch IMail Server and Collaboration Suite are prone to a stack-overflow vulnerability. Updates are available. Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure are vulnerable. Ipswitch IMail Server is an American Ipswitch company's mail server running on the Microsoft Windows operating system.

Want to work within IT-Security?

Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit.

Currently the following type of positions are available: http://secunia.com/quality_assurance_analyst/ http://secunia.com/web_application_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/

TITLE: Ipswitch IMail Server SMTP Service Unspecified Vulnerability

SECUNIA ADVISORY ID: SA21795

VERIFY ADVISORY: http://secunia.com/advisories/21795/

CRITICAL: Highly critical

IMPACT: System access

WHERE:

From remote

SOFTWARE: Ipswitch Collaboration Suite 2006 http://secunia.com/product/8652/ IMail Secure Server 2006 http://secunia.com/product/8651/ IMail Server 2006 http://secunia.com/product/8653/

DESCRIPTION: A vulnerability has been reported in IMail Server, which can be exploited by malicious people to compromise a vulnerable system.

ORIGINAL ADVISORY: http://www.ipswitch.com/support/ics/updates/ics20061.asp http://www.ipswitch.com/support/imail/releases/im20061.asp

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

. ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow http://www.zerodayinitiative.com/advisories/ZDI-06-028.html September 7, 2006

-- CVE ID: CVE-2006-4379

-- Affected Vendor: Ipswitch

-- Affected Products: ICS/IMail Server 2006

-- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since August 31, 2006 by Digital Vaccine protection filter ID 4496.

-- Vendor Response: Ipswitch has issued an update, version 2006.1, to correct this vulnerability. More details can be found at:

http://www.ipswitch.com/support/imail/releases/im20061.asp

-- Disclosure Timeline: 2006.06.22 - Vulnerability reported to vendor 2006.08.31 - Digital Vaccine released to TippingPoint customers 2006.09.07 - Coordinated public release of advisory

-- Credit: This vulnerability was discovered by an anonymous researcher.

-- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at:

http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product

Show details on source website

JSON

To clipboard

{
  "affected_products": {
    "_id": null,
    "data": [
      {
        "_id": null,
        "model": "imail secure server",
        "scope": "eq",
        "trust": 2.7,
        "vendor": "ipswitch",
        "version": "2006"
      },
      {
        "_id": null,
        "model": "imail plus",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "ipswitch",
        "version": "2006"
      },
      {
        "_id": null,
        "model": "collaboration suite",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "ipswitch",
        "version": "2006_premium"
      },
      {
        "_id": null,
        "model": "collaboration suite",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "ipswitch",
        "version": "2006_standard"
      },
      {
        "_id": null,
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "ipswitch",
        "version": null
      },
      {
        "_id": null,
        "model": "collaboration suite",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "ipswitch",
        "version": "2006 suite premium and  standard editions"
      },
      {
        "_id": null,
        "model": "imail",
        "scope": null,
        "trust": 0.7,
        "vendor": "ipswitch",
        "version": null
      },
      {
        "_id": null,
        "model": "collaboration suite standard edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006"
      },
      {
        "_id": null,
        "model": "collaboration suite premium edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006"
      },
      {
        "_id": null,
        "model": "imail server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006"
      },
      {
        "_id": null,
        "model": "imail plus",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "0"
      },
      {
        "_id": null,
        "model": "collaboration suite standard edition",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006.1"
      },
      {
        "_id": null,
        "model": "collaboration suite premium edition",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006.1"
      },
      {
        "_id": null,
        "model": "imail server",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "ipswitch",
        "version": "2006.1"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      },
      {
        "db": "BID",
        "id": "19885"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      }
    ]
  },
  "configurations": {
    "_id": null,
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:ipswitch:imail_plus",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:ipswitch:imail_secure_server",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:ipswitch:ipswitch_collaboration_suite",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      }
    ]
  },
  "credits": {
    "_id": null,
    "data": "Anonymous",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2006-4379",
  "cvss": {
    "_id": null,
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CVE-2006-4379",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "VHN-20487",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2006-4379",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#542197",
            "trust": 0.8,
            "value": "12.86"
          },
          {
            "author": "NVD",
            "id": "CVE-2006-4379",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200609-136",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-20487",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      }
    ]
  },
  "description": {
    "_id": null,
    "data": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character. The Ipswitch IMail Server is vulnerable to a buffer overflow.  This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition. Authentication is not required to exploit this vulnerability.The specific flaw exists within the SMTP daemon. A lack of bounds checking during the parsing of long strings contained within the characters \u0027@\u0027 and \u0027:\u0027 leads to a stack overflow vulnerability. Exploitation can result in code execution or a denial of service. Ipswitch IMail Server and Collaboration Suite are prone to a stack-overflow vulnerability. Updates are available. \nIpswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure are vulnerable. Ipswitch IMail Server is an American Ipswitch company\u0027s mail server running on the Microsoft Windows operating system. \n\n----------------------------------------------------------------------\n\nWant to work within IT-Security?\n\nSecunia is expanding its team of highly skilled security experts. \nWe will help with relocation and obtaining a work permit. \n\nCurrently the following type of positions are available:\nhttp://secunia.com/quality_assurance_analyst/\nhttp://secunia.com/web_application_security_specialist/ \nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nIpswitch IMail Server SMTP Service Unspecified Vulnerability\n\nSECUNIA ADVISORY ID:\nSA21795\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/21795/\n\nCRITICAL:\nHighly critical\n\nIMPACT:\nSystem access\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nIpswitch Collaboration Suite 2006\nhttp://secunia.com/product/8652/\nIMail Secure Server 2006\nhttp://secunia.com/product/8651/\nIMail Server 2006\nhttp://secunia.com/product/8653/\n\nDESCRIPTION:\nA vulnerability has been reported in IMail Server, which can be\nexploited by malicious people to compromise a vulnerable system. \n\nORIGINAL ADVISORY:\nhttp://www.ipswitch.com/support/ics/updates/ics20061.asp\nhttp://www.ipswitch.com/support/imail/releases/im20061.asp\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow\nhttp://www.zerodayinitiative.com/advisories/ZDI-06-028.html\nSeptember  7, 2006\n\n-- CVE ID:\nCVE-2006-4379\n\n-- Affected Vendor:\nIpswitch\n\n-- Affected Products:\nICS/IMail Server 2006\n\n\n-- TippingPoint(TM) IPS Customer Protection:\nTippingPoint IPS customers have been protected against this\nvulnerability since August 31, 2006 by Digital Vaccine protection\nfilter ID 4496. \n\n-- Vendor Response:\nIpswitch has issued an update, version 2006.1, to correct this\nvulnerability. More details can be found at:\n\nhttp://www.ipswitch.com/support/imail/releases/im20061.asp\n\n-- Disclosure Timeline:\n2006.06.22 - Vulnerability reported to vendor\n2006.08.31 - Digital Vaccine released to TippingPoint customers\n2006.09.07 - Coordinated public release of advisory\n\n-- Credit:\nThis vulnerability was discovered by an anonymous researcher. \n\n-- About the Zero Day Initiative (ZDI):\nEstablished by TippingPoint, a division of 3Com, The Zero Day Initiative\n(ZDI) represents a best-of-breed model for rewarding security\nresearchers for responsibly disclosing discovered vulnerabilities. \n\nResearchers interested in getting paid for their security research\nthrough the ZDI can find more information and sign-up at:\n\n    http://www.zerodayinitiative.com\n\nThe ZDI is unique in how the acquired vulnerability information is used. \n3Com does not re-sell the vulnerability details or any exploit code. \nInstead, upon notifying the affected product vendor, 3Com provides its\ncustomers with zero day protection through its intrusion prevention\ntechnology. Explicit details regarding the specifics of the\nvulnerability are not exposed to any parties until an official vendor\npatch is publicly available. Furthermore, with the altruistic aim of\nhelping to secure a broader user base, 3Com provides this vulnerability\ninformation confidentially to security vendors (including competitors)\nwho have a vulnerability protection or mitigation product",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      },
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      },
      {
        "db": "BID",
        "id": "19885"
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      },
      {
        "db": "PACKETSTORM",
        "id": "49786"
      },
      {
        "db": "PACKETSTORM",
        "id": "49828"
      }
    ],
    "trust": 3.51
  },
  "exploit_availability": {
    "_id": null,
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-20487",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      }
    ]
  },
  "external_ids": {
    "_id": null,
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2006-4379",
        "trust": 3.6
      },
      {
        "db": "SECUNIA",
        "id": "21795",
        "trust": 2.6
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028",
        "trust": 2.5
      },
      {
        "db": "BID",
        "id": "19885",
        "trust": 2.0
      },
      {
        "db": "VUPEN",
        "id": "ADV-2006-3496",
        "trust": 1.7
      },
      {
        "db": "SECTRACK",
        "id": "1016803",
        "trust": 1.7
      },
      {
        "db": "SECTRACK",
        "id": "1016804",
        "trust": 1.7
      },
      {
        "db": "CERT/CC",
        "id": "VU#542197",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-067",
        "trust": 0.7
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136",
        "trust": 0.7
      },
      {
        "db": "BUGTRAQ",
        "id": "20060907 ZDI-06-028: IPSWITCH COLLABORATION SUITE SMTP SERVER STACK OVERFLOW",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "28789",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "49828",
        "trust": 0.2
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3264",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "2601",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3265",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "49786",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      },
      {
        "db": "BID",
        "id": "19885"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      },
      {
        "db": "PACKETSTORM",
        "id": "49786"
      },
      {
        "db": "PACKETSTORM",
        "id": "49828"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      }
    ]
  },
  "id": "VAR-200609-0308",
  "iot": {
    "_id": null,
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-23T22:50:25.028000Z",
  "patch": {
    "_id": null,
    "data": [
      {
        "title": "im20061",
        "trust": 1.5,
        "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      }
    ]
  },
  "problemtype_data": {
    "_id": null,
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      }
    ]
  },
  "references": {
    "_id": null,
    "data": [
      {
        "trust": 3.4,
        "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
      },
      {
        "trust": 2.6,
        "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
      },
      {
        "trust": 1.8,
        "url": "http://www.zerodayinitiative.com/advisories/zdi-06-028.html"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/19885"
      },
      {
        "trust": 1.7,
        "url": "http://securitytracker.com/id?1016803"
      },
      {
        "trust": 1.7,
        "url": "http://securitytracker.com/id?1016804"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/21795"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2006/3496"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
      },
      {
        "trust": 0.9,
        "url": "http://secunia.com/advisories/21795/"
      },
      {
        "trust": 0.8,
        "url": "http://www.mail-archive.com/imail_forum@list.ipswitch.com/msg108403.html"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-4379"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-4379"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2006/3496"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/28789"
      },
      {
        "trust": 0.6,
        "url": "http://www.securityfocus.com/archive/1/archive/1/445521/100/0/threaded"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/quality_assurance_analyst/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/8653/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/8651/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/8652/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/web_application_security_specialist/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://www.tippingpoint.com"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2006-4379"
      },
      {
        "trust": 0.1,
        "url": "http://www.zerodayinitiative.com"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028"
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006"
      },
      {
        "db": "PACKETSTORM",
        "id": "49786"
      },
      {
        "db": "PACKETSTORM",
        "id": "49828"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-4379"
      }
    ]
  },
  "sources": {
    "_id": null,
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#542197",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-06-028",
        "ident": null
      },
      {
        "db": "VULHUB",
        "id": "VHN-20487",
        "ident": null
      },
      {
        "db": "BID",
        "id": "19885",
        "ident": null
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-002006",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "49786",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "49828",
        "ident": null
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136",
        "ident": null
      },
      {
        "db": "NVD",
        "id": "CVE-2006-4379",
        "ident": null
      }
    ]
  },
  "sources_release_date": {
    "_id": null,
    "data": [
      {
        "date": "2006-12-07T00:00:00",
        "db": "CERT/CC",
        "id": "VU#542197",
        "ident": null
      },
      {
        "date": "2006-09-08T00:00:00",
        "db": "ZDI",
        "id": "ZDI-06-028",
        "ident": null
      },
      {
        "date": "2006-09-08T00:00:00",
        "db": "VULHUB",
        "id": "VHN-20487",
        "ident": null
      },
      {
        "date": "2006-09-07T00:00:00",
        "db": "BID",
        "id": "19885",
        "ident": null
      },
      {
        "date": "2012-09-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-002006",
        "ident": null
      },
      {
        "date": "2006-09-08T05:23:41",
        "db": "PACKETSTORM",
        "id": "49786",
        "ident": null
      },
      {
        "date": "2006-09-08T06:50:37",
        "db": "PACKETSTORM",
        "id": "49828",
        "ident": null
      },
      {
        "date": "2006-09-08T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200609-136",
        "ident": null
      },
      {
        "date": "2006-09-08T21:04:00",
        "db": "NVD",
        "id": "CVE-2006-4379",
        "ident": null
      }
    ]
  },
  "sources_update_date": {
    "_id": null,
    "data": [
      {
        "date": "2006-12-07T00:00:00",
        "db": "CERT/CC",
        "id": "VU#542197",
        "ident": null
      },
      {
        "date": "2006-09-08T00:00:00",
        "db": "ZDI",
        "id": "ZDI-06-028",
        "ident": null
      },
      {
        "date": "2018-10-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-20487",
        "ident": null
      },
      {
        "date": "2007-02-05T16:18:00",
        "db": "BID",
        "id": "19885",
        "ident": null
      },
      {
        "date": "2012-09-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-002006",
        "ident": null
      },
      {
        "date": "2006-09-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200609-136",
        "ident": null
      },
      {
        "date": "2024-11-21T00:15:49.037000",
        "db": "NVD",
        "id": "CVE-2006-4379",
        "ident": null
      }
    ]
  },
  "threat_type": {
    "_id": null,
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "49828"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "_id": null,
    "data": "The Ipswitch IMail Server is vulnerable to a buffer overflow",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#542197"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "_id": null,
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200609-136"
      }
    ],
    "trust": 0.6
  }
}

gsd-2006-4379

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2006-4379

Aliases

CVE-2006-4379

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-4379",
    "description": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character.",
    "id": "GSD-2006-4379"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-4379"
      ],
      "details": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character.",
      "id": "GSD-2006-4379",
      "modified": "2023-12-13T01:19:51.935577Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-4379",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "21795",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/21795"
          },
          {
            "name": "20060907 ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
          },
          {
            "name": "1016804",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1016804"
          },
          {
            "name": "19885",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/19885"
          },
          {
            "name": "http://www.ipswitch.com/support/imail/releases/im20061.asp",
            "refsource": "CONFIRM",
            "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
          },
          {
            "name": "ipswitch-smtp-daemon-code-execution(28789)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
          },
          {
            "name": "http://www.ipswitch.com/support/ics/updates/ics20061.asp",
            "refsource": "CONFIRM",
            "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
          },
          {
            "name": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html",
            "refsource": "MISC",
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
          },
          {
            "name": "1016803",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1016803"
          },
          {
            "name": "ADV-2006-3496",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/3496"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ipswitch:imail_secure_server:2006:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_premium:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4379"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html",
              "refsource": "MISC",
              "tags": [
                "Patch"
              ],
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
            },
            {
              "name": "http://www.ipswitch.com/support/ics/updates/ics20061.asp",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
            },
            {
              "name": "http://www.ipswitch.com/support/imail/releases/im20061.asp",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
            },
            {
              "name": "19885",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/19885"
            },
            {
              "name": "21795",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/21795"
            },
            {
              "name": "1016803",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1016803"
            },
            {
              "name": "1016804",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1016804"
            },
            {
              "name": "ADV-2006-3496",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/3496"
            },
            {
              "name": "ipswitch-smtp-daemon-code-execution(28789)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
            },
            {
              "name": "20060907 ZDI-06-028: Ipswitch Collaboration Suite SMTP Server Stack Overflow",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-17T21:36Z",
      "publishedDate": "2006-09-08T21:04Z"
    }
  }
}

fkie_cve-2006-4379

Vulnerability from fkie_nvd

Published

2006-09-08 21:04

Modified

2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/21795	Vendor Advisory
cve@mitre.org	http://securitytracker.com/id?1016803
cve@mitre.org	http://securitytracker.com/id?1016804
cve@mitre.org	http://www.ipswitch.com/support/ics/updates/ics20061.asp	Patch
cve@mitre.org	http://www.ipswitch.com/support/imail/releases/im20061.asp
cve@mitre.org	http://www.securityfocus.com/archive/1/445521/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/19885	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2006/3496
cve@mitre.org	http://www.zerodayinitiative.com/advisories/ZDI-06-028.html	Patch
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/28789
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/21795	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1016803
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1016804
af854a3a-2127-422b-91ae-364da2661108	http://www.ipswitch.com/support/ics/updates/ics20061.asp	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.ipswitch.com/support/imail/releases/im20061.asp
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/445521/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/19885	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/3496
af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-06-028.html	Patch
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/28789

Impacted products

Vendor	Product	Version
ipswitch	imail_plus	2006
ipswitch	imail_secure_server	2006
ipswitch	ipswitch_collaboration_suite	2006_premium
ipswitch	ipswitch_collaboration_suite	2006_standard

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0C6A165-8B6B-4D0F-B2F7-3A5CDA4BA072",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ipswitch:imail_secure_server:2006:*:*:*:*:*:*:*",
              "matchCriteriaId": "A01A5A7C-A405-4A3A-860C-7B954011A9B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_premium:*:*:*:*:*:*:*",
              "matchCriteriaId": "4031612D-7151-45DF-9AF6-7DEA14FA13B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*",
              "matchCriteriaId": "95104B1C-0B67-43FF-A93C-9296707B3DA9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in the SMTP Daemon in Ipswitch Collaboration 2006 Suite Premium and Standard Editions, IMail, IMail Plus, and IMail Secure allows remote attackers to execute arbitrary code via a long string located after an \u0027@\u0027 character and before a \u0027:\u0027 character."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en mont\u00f3n en SMTP Daemon en Ipswitch Collaboration 2006 Suite Premium y Standard Editions, IMail, IMail Plus, e IMail Secure, permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una cadena larga situada despu\u00e9s del caracter \u201c@\u201d y antes del car\u00e1cter \u201c: \u201d."
    }
  ],
  "id": "CVE-2006-4379",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-09-08T21:04:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/21795"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1016803"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1016804"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/19885"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/3496"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/21795"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1016803"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1016804"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.ipswitch.com/support/ics/updates/ics20061.asp"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ipswitch.com/support/imail/releases/im20061.asp"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/445521/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/19885"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/3496"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-028.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28789"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2006-4379 (GCVE-0-2006-4379)

Vulnerability from cvelistv5

ghsa-6cpx-26v9-cp5m

Vulnerability from github

var-200609-0308

Vulnerability from variot

gsd-2006-4379

Vulnerability from gsd

fkie_cve-2006-4379

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature