CVE-2006-1337

EPSS 2.88%
Veröffentlicht 21.03.2006 02:06:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Buffer overflow in the POP 3 (POP3) service in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 allows remote attackers to execute arbitrary code via unknown vectors before authentication.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mailenable ≫ Mailenable Editionprofessional Version <= 1.72

Mailenable ≫ Mailenable Version1.2 Editionprofessional

Mailenable ≫ Mailenable Version1.2a Editionprofessional

Mailenable ≫ Mailenable Version1.5 Editionprofessional

Mailenable ≫ Mailenable Version1.6 Editionprofessional

Mailenable ≫ Mailenable Version1.7 Editionprofessional

Mailenable ≫ Mailenable Version1.17 Editionprofessional

Mailenable ≫ Mailenable Version1.18 Editionprofessional

Mailenable ≫ Mailenable Version1.19 Editionprofessional

Mailenable ≫ Mailenable Version1.51 Editionprofessional

Mailenable ≫ Mailenable Version1.52 Editionprofessional

Mailenable ≫ Mailenable Version1.53 Editionprofessional

Mailenable ≫ Mailenable Version1.54 Editionprofessional

Mailenable ≫ Mailenable Version1.70 Editionprofessional

Mailenable ≫ Mailenable Version1.71 Editionprofessional

Mailenable ≫ Mailenable Editionenterprise Version <= 1.2

Mailenable ≫ Mailenable Version1.00 Editionenterprise

Mailenable ≫ Mailenable Version1.1 Editionenterprise

Mailenable ≫ Mailenable Version1.01 Editionenterprise

Mailenable ≫ Mailenable Version1.02 Editionenterprise

Mailenable ≫ Mailenable Version1.03 Editionenterprise

Mailenable ≫ Mailenable Version1.04 Editionenterprise

Mailenable ≫ Mailenable Editionstandard Version <= 1.92

Mailenable ≫ Mailenable Version1.8 Editionstandard

Mailenable ≫ Mailenable Version1.71 Editionstandard

Mailenable ≫ Mailenable Version1.72 Editionstandard

Mailenable ≫ Mailenable Version1.90 Editionstandard

Mailenable ≫ Mailenable Version1.91 Editionstandard

Mailenable ≫ Mailenable Version1.701 Editionstandard

Mailenable ≫ Mailenable Version1.702 Editionstandard

Mailenable ≫ Mailenable Version1.703 Editionstandard

Mailenable ≫ Mailenable Version1.704 Editionstandard

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.88%	0.858

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www.mailenable.com/enterprisehistory.asp

http://www.mailenable.com/professionalhistory.asp

http://www.mailenable.com/standardhistory.asp

http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1359.html

http://secunia.com/advisories/19288

Patch

Vendor Advisory

http://securitytracker.com/id?1015797

http://www.osvdb.org/24012

http://www.securityfocus.com/bid/17162

http://www.vupen.com/english/advisories/2006/1006

Vendor Advisory