Lucene search

MitreCVE-2006-0537

HistoryFeb 04, 2006 - 12:06 a.m.

CVE-2006-0537

2006-02-0400:06:00

mitre

web.nvd.nist.gov

cve-2006-0537

buffer overflow

kinesphere corporation

exchange

pop3 server

remote code execution

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.333

Percentile

97.1%

JSON

Buffer overflow in the POP3 server in Kinesphere Corporation eXchange before 5.0.060125 allows remote attackers to execute arbitrary code via a long RCPT TO argument.

Affected configurations

Nvd

Node

kinesphere_corporationexchange_pop3Match5.0_build_050203

VendorProductVersionCPE
kinesphere_corporationexchange_pop35.0_build_050203cpe:2.3:a:kinesphere_corporation:exchange_pop3:5.0_build_050203:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
kinesphere_corporation	exchange_pop3	5.0_build_050203	cpe:2.3:a:kinesphere_corporation:exchange_pop3:5.0_build_050203:::::::*

References

archives.neohapsis.com/archives/bugtraq/2006-02/0040.html

downloads.securityfocus.com/vulnerabilities/exploits/exchangepop3.pl

secunia.com/advisories/18687

securityreason.com/securityalert/408

securitytracker.com/id?1015580

www.osvdb.org/22907

www.securityfocus.com/bid/16485

www.vupen.com/english/advisories/2006/0437

exchange.xforce.ibmcloud.com/vulnerabilities/24477

www.exploit-db.com/exploits/1466

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.333

Percentile

97.1%

JSON

Related for CVE-2006-0537