Unrated severityNVD Advisory· Published Sep 26, 2007· Updated Apr 23, 2026

CVE-2007-5094

Description

Heap-based buffer overflow in iaspam.dll in the SMTP Server in Ipswitch IMail Server 8.01 through 8.11 allows remote attackers to execute arbitrary code via a set of four different e-mail messages with a long boundary parameter in a certain malformed Content-Type header line, the string "MIME" by itself on a line in the header, and a long Content-Transfer-Encoding header line.

Affected products

Ipswitch, Inc./Imail5 versions
cpe:2.3:a:ipswitch:imail:8.01:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:ipswitch:imail:8.01:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:8.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:8.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:imail:8.11:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000