Ipswitch IMail Server STARTTLS Plaintext Command Injection Vulnerability Network Vulnerability

Summary

The host is running Ipswitch IMail Server and is prone to plaintext command injection vulnerability.

Impact

Successful exploitation will allow attacker to execute arbitrary commands in the context of the user running the application. Impact Level: Application

Solution

Upgrade to Ipswitch IMail version 11.5 or later. For updates refer to http://www.imailserver.com/

Insight

This flaw is caused by an error within the 'STARTTLS' implementation where the switch from plaintext to TLS is implemented below the application's I/O buffering layer, which could allow attackers to inject commands during the plaintext phase of the protocol via man-in-the-middle attacks.

Affected

Ipswitch IMail versions 11.03 and Prior.

References

http://secunia.com/advisories/43676
http://www.vupen.com/english/advisories/2011/060

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-1430

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

/doc directory browsable ?
An Image Gallery Multiple Cross-Site Scripting Vulnerability
Apache ActiveMQ Persistent Cross-Site Scripting Vulnerability
Adobe BlazeDS XML and XML External Entity Injection Vulnerabilities
Apache Tomcat Directory Listing and File disclosure

Take action and discover your vulnerabilities