Ipswitch Instant Messaging vulnerabilities
3 known vulnerabilities affecting ipswitch/instant_messaging.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2008-0944P4MEDIUMCVSS 5.0PoCv2.0.8.12008-02-25
CVE-2008-0944 [MEDIUM] CWE-189 CVE-2008-0944: Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote attackers to cause a denial of ser
Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote attackers to cause a denial of service (NULL dereference and application crash) via a version field containing zero.
nvd
CVE-2008-0946P4MEDIUMCVSS 4.9≤ 2.0.8.12008-02-25
CVE-2008-0946 [MEDIUM] CWE-22 CVE-2008-0946: Directory traversal vulnerability in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Mes
Directory traversal vulnerability in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to create arbitrary empty files via a .. (dot dot) in the recipient field.
nvd
CVE-2008-0945P4LOWCVSS 3.5≤ 2.0.8.12008-02-25
CVE-2008-0945 [LOW] CWE-134 CVE-2008-0945: Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ip
Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.
nvd