Unrated severityNVD Advisory· Published Feb 25, 2008· Updated Apr 23, 2026

CVE-2008-0945

Description

Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.

Affected products

Ipswitch, Inc./Imserver
cpe:2.3:a:ipswitch:imserver:*:*:*:*:*:*:*:*
Range: <=2.0.8.1
Ipswitch, Inc./Instant Messaging
cpe:2.3:a:ipswitch:instant_messaging:*:*:*:*:*:*:*:*
Range: <=2.0.8.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28824nvdVendor Advisory
aluigi.altervista.org/adv/ipsimene-adv.txtnvd
aluigi.org/poc/ipsimene.zipnvd
securityreason.com/securityalert/3697nvd
www.securityfocus.com/archive/1/487748/100/200/threadednvd
www.securityfocus.com/bid/27677nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000