10
CVE-2006-0559
- EPSS 6.08%
- Veröffentlicht 04.04.2006 14:04:00
- Zuletzt bearbeitet 16.06.2026 22:20:50
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mcafee ≫ Webshield Smtp Updatemr2_patch Version <= 4.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.08% | 0.925 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/19491
http://securityreason.com/securityalert/671
http://securitytracker.com/id?1015861
http://www.osvdb.org/24366
http://www.securityfocus.com/archive/1/429812/100/0/threaded
http://www.securityfocus.com/bid/16742
http://www.vupen.com/english/advisories/2006/1219
https://exchange.xforce.ibmcloud.com/vulnerabilities/25621