CVE-2006-6425

EPSS 76.47%
Published 27.12.2006 01:28:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via unspecified vectors involving the APPEND command.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Novell ≫ Netmail Updatee-ftfl Version <= 3.5.2

Novell ≫ Netmail Version3.0.1

Novell ≫ Netmail Version3.0.3a Updatea

Novell ≫ Netmail Version3.0.3a Updateb

Novell ≫ Netmail Version3.1

Novell ≫ Netmail Version3.1 Updatef

Novell ≫ Netmail Version3.5

Novell ≫ Netmail Version3.10

Novell ≫ Netmail Version3.10 Updatea

Novell ≫ Netmail Version3.10 Updateb

Novell ≫ Netmail Version3.10 Updatec

Novell ≫ Netmail Version3.10 Updated

Novell ≫ Netmail Version3.10 Updatee

Novell ≫ Netmail Version3.10 Updatef

Novell ≫ Netmail Version3.10 Updateg

Novell ≫ Netmail Version3.10 Updateh

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	76.47%	0.989

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

https://secure-support.novell.com/KanisaPlatform/Publishing/134/3096026_f.SAL_Public.html

Patch

http://secunia.com/advisories/23437

Patch

Vendor Advisory

http://securitytracker.com/id?1017437

Patch

http://www.vupen.com/english/advisories/2006/5134

http://securityreason.com/securityalert/2080

http://www.kb.cert.org/vuls/id/258753

US Government Resource

http://www.securityfocus.com/archive/1/455200/100/0/threaded

http://www.securityfocus.com/bid/21723

http://www.zerodayinitiative.com/advisories/ZDI-06-054.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2006-6425

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-6425

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-6425

EUVD