[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248678

 
 

909

 
 

195426

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in IceWarp Mail Server

ID: oval:org.secpod.oval:def:2517Date: (C)2011-10-13   (M)2022-10-10
Class: VULNERABILITYFamily: windows




The host is installed with IceWarp Mail Server before 10.3.3 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by an error in the XML external entity. Successful exploitation allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers.

Platform:
Microsoft Windows Server 2012 R2
Microsoft Windows 8.1
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8
Microsoft Windows 10
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Product:
IceWarp Mail Server
Reference:
CVE-2011-3579
CVE    1
CVE-2011-3579
CPE    6
cpe:/a:icewarp:mail_server:9.4.2
cpe:/a:icewarp:mail_server:9.3.2
cpe:/a:icewarp:mail_server:9.4.1
cpe:/a:icewarp:mail_server:9.3.1
...

© SecPod Technologies