| Vulnerability Name: | CVE-2002-0777 (CCN-9116) | ||||||||
| Assigned: | 2002-05-20 | ||||||||
| Published: | 2002-05-20 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | Buffer overflow in the LDAP component of Ipswitch IMail 7.1 and earlier allows remote attackers to execute arbitrary code via a long "bind DN" parameter. | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: BUGTRAQ Type: Patch, Vendor Advisory 20020520 Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd) Source: CCN Type: Foundstone Advisory FS-052002-21-IPIM Buffer Overflow in Ipswitch Imail 7.1 and prior Source: MITRE Type: CNA CVE-2002-0777 Source: CCN Type: Ipswitch Web site IMail Server - Patches & Upgrades Source: XF Type: Patch, Vendor Advisory imail-ldap-bo(9116) Source: CCN Type: OSVDB ID: 5071 Ipswitch IMail LDAP Bind DN Overflow Source: BID Type: Patch, Vendor Advisory 4780 Source: CCN Type: BID-4780 Ipswitch IMail Server LDAP Buffer Overflow Vulnerability Source: XF Type: UNKNOWN imail-ldap-bo(9116) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||