Ipswitch IMail Server < 11.02 is prone to multiple Vulnerabilities. 1. iMultiple buffer-overflow Vulnerabilities because it fails to perform adequate boundary checks on user- supplied data. 2. Multiple remote code-execution vulnerabilities. An attacker can exploit these issues to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting these issues will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition. Ipswitch IMail Server versions prior to 11.02 are vulnerable.

Vendor updates are available. Please contact the vendor for more information.

• http://www.ipswitch.com/Products/IMail_Server/index.html
• http://www.zerodayinitiative.com/advisories/ZDI-10-127/
• https://www.securityfocus.com/bid/41717
• https://www.securityfocus.com/bid/41718
• https://www.securityfocus.com/bid/41719

---

Updated on 2015-03-25