RSS   Vulnerabilities for 'Instant messaging'   RSS

2008-02-25
 
CVE-2008-0946

CWE-22
 

 
Directory traversal vulnerability in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to create arbitrary empty files via a .. (dot dot) in the recipient field.

 
 
CVE-2008-0945

CWE-134
 

 
Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.

 
 
CVE-2008-0944

CWE-189
 

 
Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote attackers to cause a denial of service (NULL dereference and application crash) via a version field containing zero.

 

 >>> Vendor: Ipswitch 26 Products
Ws ftp server
Imail
Ws ftp pro
Wincom lpd
Tftp server
Whatsup gold
Imail express
Ipswitch collaboration suite
Whatsup
Imail server
Whatsup small business
Whatsup professional
Ipswitch secure server
Imail plus
Imail secure server
Imail premium
Ws ftp
Imserver
Imail client
Instant messaging
Ws ftp home
Moveit dmz
Moveit mobile
Moveit transfer 2017
Moveit
Moveit transfer


Copyright 2024, cxsecurity.com

 

Back to Top