IpswitchCVEs & Vulnerabilities

109 CVEs affecting Ipswitch products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

imail 234ws ftp 51ws ftp server 24ipswitch collaboration suite 17imail server 13whatsup professional 13ws ftp pro 9moveit dmz 7
CVE-2000-0825MEDIUM

Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connections in which a long Host: header is sent, which causes a thread to crash.

14 Nov 2000
5.0
CVSS
CVE-2000-0839MEDIUM

WinCOM LPD 1.00.90 allows remote attackers to cause a denial of service via a large number of LPD options to the LPD port (515).

14 Nov 2000
5.0
CVSS
CVE-2000-0780MEDIUMpoc

The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack.

20 Oct 2000
6.4
CVSS
CVE-2000-0301MEDIUM

Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command.

6 Apr 2000
5.0
CVSS
CVE-2000-0056MEDIUMpoc

IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.

5 Jan 2000
5.0
CVSS
CVE-1999-1497HIGHpoc

Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts.

21 Dec 1999
7.2
CVSS
CVE-1999-1078HIGH

WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges.

29 Jul 1999
7.5
CVSS
CVE-2000-0019LOW

IMail POP3 daemon uses weak encryption, which allows local users to read files.

4 Mar 1999
2.1
CVSS
CVE-1999-1551MEDIUMpoc

Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL.

2 Mar 1999
5.0
CVSS
CVE-1999-1046CRITICALpoc

Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 8181.

1 Mar 1999
10.0
CVSS
CVE-1999-0362MEDIUM

WS_FTP server remote denial of service through cwd command.

2 Feb 1999
5.0
CVSS
CVE-1999-1171MEDIUMpoc

IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.

2 Feb 1999
4.6
CVSS
CVE-1999-1170MEDIUMpoc

IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.

2 Jan 1999
4.6
CVSS
← PrevPage 3 / 3Next →