CVE-2007-3927

{"id": "CVE-2007-3927", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-07-21T00:30:00.000", "references": [{"url": "http://docs.ipswitch.com/IMail%202006.21/ReleaseNotes/IMail_RelNotes.htm#NewRelease", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/45818", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/45819", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/26123", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/24962", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1018421", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/2574", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35504", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35505", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 (1) allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and (2) allow attackers to have an unknown impact via an unspecified vector related to \"subscribe.\""}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en Ipswitch IMail Server 2006 versiones anteriores a 2006.21 (1) permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante vectores no especificados en Imailsec y (2) permiten a atacantes remotos tener un impacto desconocido mediante un vector no especificado relativo a \"suscribir\"."}], "lastModified": "2017-07-29T01:32:37.677", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ipswitch:imail_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B64F51E1-D2B5-4E9D-962E-2DCD2B82919B", "versionEndIncluding": "2006.2"}, {"criteria": "cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEFD422E-19B4-4789-BA0D-42C90C4A5AE9", "versionEndIncluding": "2006.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}