Lucene search

[email protected]CVE-2006-0130

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2006-0130

2022-10-0316:21:38

[email protected]

web.nvd.nist.gov

cve

2006-0130

mail management agent

rockliffe mailsite

authentication

remote attack

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.3%

JSON

Mail Management Agent (MAILMA) (aka Mail Management Server) in Rockliffe MailSite 7.0.3.1 and earlier allows remote attackers to attempt authentication with an unlimited number of user account names and passwords without denying connections, limiting the rate of connections, or locking out an account.

Affected configurations

NVD

Node

rockliffemailsiteRange≤7.0.3.1

CPENameOperatorVersion
rockliffe:mailsiterockliffe mailsitele7.0.3.1

CPE	Name	Operator	Version
rockliffe:mailsite	rockliffe mailsite	le	7.0.3.1

References

lists.grok.org.uk/pipermail/full-disclosure/2006-January/040970.html

zur.homelinux.com/Advisories/RockliffeMailsiteUserEnum.txt

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.3%

JSON

Related for CVE-2006-0130

nvd1 prion1 cvelist1