6.5

CVE-2006-6761

Exploit
Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via a long argument to the SUBSCRIBE command.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NovellNetmail Version3.5.2 Updatea
NovellNetmail Version3.5.2 Updateb
NovellNetmail Version3.5.2 Updatec
NovellNetmail Version3.5.2 Updatec1
NovellNetmail Version3.5.2 Updated
NovellNetmail Version3.5.2 Updatee-ftfl
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 53.67% 0.989
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/23437
Patch
Vendor Advisory
Exploit
http://securitytracker.com/id?1017437
Patch
http://www.vupen.com/english/advisories/2006/5134
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=454
Patch
http://www.kb.cert.org/vuls/id/863313
US Government Resource
http://www.securityfocus.com/bid/21728
Patch
https://secure-support.novell.com/KanisaPlatform/Publishing/328/3717068_f.SAL_Public.html
Patch