CVE-2007-6101

EPSS 1%
Veröffentlicht 23.11.2007 20:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Code-crafters ≫ Ability Mail Server Version1.18

Code-crafters ≫ Ability Mail Server Version2.01b

Code-crafters ≫ Ability Mail Server Version2.02b

Code-crafters ≫ Ability Mail Server Version2.03b

Code-crafters ≫ Ability Mail Server Version2.04b

Code-crafters ≫ Ability Mail Server Version2.05b

Code-crafters ≫ Ability Mail Server Version2.10

Code-crafters ≫ Ability Mail Server Version2.11

Code-crafters ≫ Ability Mail Server Version2.12

Code-crafters ≫ Ability Mail Server Version2.13

Code-crafters ≫ Ability Mail Server Version2.14

Code-crafters ≫ Ability Mail Server Version2.15

Code-crafters ≫ Ability Mail Server Version2.16

Code-crafters ≫ Ability Mail Server Version2.17

Code-crafters ≫ Ability Mail Server Version2.18

Code-crafters ≫ Ability Mail Server Version2.19

Code-crafters ≫ Ability Mail Server Version2.20

Code-crafters ≫ Ability Mail Server Version2.21

Code-crafters ≫ Ability Mail Server Version2.22

Code-crafters ≫ Ability Mail Server Version2.23

Code-crafters ≫ Ability Mail Server Version2.50

Code-crafters ≫ Ability Mail Server Version2.51

Code-crafters ≫ Ability Mail Server Version2.52

Code-crafters ≫ Ability Mail Server Version2.53

Code-crafters ≫ Ability Mail Server Version2.54

Code-crafters ≫ Ability Mail Server Version2.55

Code-crafters ≫ Ability Mail Server Version2.56

Code-crafters ≫ Ability Mail Server Version2.57

Code-crafters ≫ Ability Mail Server Version2.58

Code-crafters ≫ Ability Mail Server Version2.60

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1%	0.766

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/42399

http://osvdb.org/42400

http://secunia.com/advisories/27736

Vendor Advisory

http://www.code-crafters.com/abilitymailserver/updatelog.html

Patch

http://www.securityfocus.com/bid/26514

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/38586

https://exchange.xforce.ibmcloud.com/vulnerabilities/38587

https://nvd.nist.gov/vuln/detail/CVE-2007-6101

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-6101

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-6101

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2007-6101