ID

VAR-199903-0048


CVE

CVE-1999-1551


TITLE

Ipswitch IMail Buffer overflow DoS Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-199903-023

DESCRIPTION

Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL. The IMail web server can be crashed by requesting an abnormally long URL. There is a buffer overflow vulnerability in Ipswitch IMail Service version 5.0

Trust: 1.26

sources: NVD: CVE-1999-1551 // BID: 505 // VULHUB: VHN-1532

AFFECTED PRODUCTS

vendor:ipswitchmodel:imailscope:eqversion:6.0

Trust: 1.9

vendor:ipswitchmodel:imailscope:eqversion:5.0

Trust: 1.9

sources: BID: 505 // CNNVD: CNNVD-199903-023 // NVD: CVE-1999-1551

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-1999-1551
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-199903-023
value: MEDIUM

Trust: 0.6

VULHUB: VHN-1532
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-1999-1551
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-1532
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-1532 // CNNVD: CNNVD-199903-023 // NVD: CVE-1999-1551

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-1551

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-199903-023

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-199903-023

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-1532

EXTERNAL IDS

db:NVDid:CVE-1999-1551

Trust: 2.0

db:BIDid:505

Trust: 2.0

db:CNNVDid:CNNVD-199903-023

Trust: 0.7

db:XFid:1898

Trust: 0.6

db:BUGTRAQid:19990302 MULTIPLE IMAIL VULNERABILITES

Trust: 0.6

db:EXPLOIT-DBid:19380

Trust: 0.1

db:VULHUBid:VHN-1532

Trust: 0.1

sources: VULHUB: VHN-1532 // BID: 505 // CNNVD: CNNVD-199903-023 // NVD: CVE-1999-1551

REFERENCES

url:http://www.securityfocus.com/bid/505

Trust: 2.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/1898

Trust: 2.1

url:http://marc.info/?l=bugtraq&m=92038879607336&w=2

Trust: 2.0

url:http://xforce.iss.net/static/1898.php

Trust: 0.6

url:http://marc.theaimsgroup.com/?l=bugtraq&m=92038879607336&w=2

Trust: 0.6

url:http://marc.info/?l=bugtraq&m=92038879607336&w=2

Trust: 0.1

sources: VULHUB: VHN-1532 // CNNVD: CNNVD-199903-023 // NVD: CVE-1999-1551

CREDITS

eEye Advisory AD03011999 posted to Bugtraq March 1, 1999 by MArc of eEye <info@eEye.com>.

Trust: 0.9

sources: BID: 505 // CNNVD: CNNVD-199903-023

SOURCES

db:VULHUBid:VHN-1532
db:BIDid:505
db:CNNVDid:CNNVD-199903-023
db:NVDid:CVE-1999-1551

LAST UPDATE DATE

2024-11-22T23:00:48.204000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-1532date:2017-12-19T00:00:00
db:BIDid:505date:2009-07-11T00:56:00
db:CNNVDid:CNNVD-199903-023date:2005-10-20T00:00:00
db:NVDid:CVE-1999-1551date:2024-11-20T23:31:23.213

SOURCES RELEASE DATE

db:VULHUBid:VHN-1532date:1999-03-02T00:00:00
db:BIDid:505date:1999-03-01T00:00:00
db:CNNVDid:CNNVD-199903-023date:1999-03-02T00:00:00
db:NVDid:CVE-1999-1551date:1999-03-02T05:00:00