Unrated severityNVD Advisory· Published Mar 23, 2007· Updated Apr 23, 2026

CVE-2007-1637

Description

Multiple buffer overflows in the IMAILAPILib ActiveX control (IMailAPI.dll) in Ipswitch IMail Server before 2006.2 allow remote attackers to execute arbitrary code via the (1) WebConnect and (2) Connect members in the (a) IMailServer control; (3) Sync3 and (4) Init3 members in the (b) IMailLDAPService control; and the (5) SetReplyTo member in the (c) IMailUserCollection control.

Affected products

Ipswitch, Inc./Imail
cpe:2.3:a:ipswitch:imail:2006:*:*:*:*:*:*:*
Ipswitch, Inc./Imail Plus
cpe:2.3:a:ipswitch:imail_plus:2006:*:*:*:*:*:*:*
Ipswitch, Inc./Imail Premium
cpe:2.3:a:ipswitch:imail_premium:2006:*:*:*:*:*:*:*
Ipswitch, Inc./Ipswitch Collaboration Suite
cpe:2.3:a:ipswitch:ipswitch_collaboration_suite:2006_standard:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000