CVE-2007-3925
RCETitle: Ipswitch Ipswitch Collaboration Suite RCE
RCE
Proof Of Concept
PoC Available for CVE-2007-3925
CWE Category
CWE-119
Published Date
Jul 21, 2007
Modified Date
Apr 09, 2025
Exploit Status
Available
Score
6.5
CVSS v2.0
Exploit Probability (EPSS)
90.36%
Vulnerability Summary
CVE-2007-3925: Multiple buffer overflows in the IMAP service (imapd32.exe) in Ipswitch IMail Server 2006 before 2006.21 allow remote authenticated users to execute arbitrary code via the (1) Search or (2) Search Charset command.
Impacted Vendors
Reference Links
http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
http://secunia.com/advisories/26123
http://www.securityfocus.com/bid/24962
http://www.securitytracker.com/id?1018419
http://www.vupen.com/english/advisories/2007/2574
https://exchange.xforce.ibmcloud.com/vulnerabilities/35496
https://exchange.xforce.ibmcloud.com/vulnerabilities/35500
http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=563
http://secunia.com/advisories/26123
http://www.securityfocus.com/bid/24962
http://www.securitytracker.com/id?1018419
http://www.vupen.com/english/advisories/2007/2574
https://exchange.xforce.ibmcloud.com/vulnerabilities/35496
https://exchange.xforce.ibmcloud.com/vulnerabilities/35500
CVSS v2.0
Source Entity
[email protected]
Severity
MEDIUM
6.5
Access Vector
N/A
Authentication
N/A
RAW VECTOR
AV:N/AC:L/Au:S/C:P/I:P/A:P
Associated Attack Patterns (CAPEC)
Total: PatternsNo specific attack patterns mapped.
Likelihood
Severity
Page /
CVE-2007-3925 Exploits & PoCs (Proof Of Concept)
MODIFIED
Vulnerability data or affected products updated.
PUBLISHED
Vulnerability first announced in NVD.
Attack Vector Matrix
Access Vector
N/A
Complexity
N/A
Privileges
N/A
Interaction
NONE
CVSS Vector String
AV:N/AC:L/Au:S/C:P/I:P/A:P
Affected Stack
No specific products linked.