Lucene search

[email protected]CVE-2006-1338

HistoryMar 21, 2006 - 2:06 a.m.

CVE-2006-1338

2006-03-2102:06:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2006-1338

mailenable

webmail

denial of service

cpu consumption

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.8%

JSON

Webmail in MailEnable Professional Edition before 1.73 and Enterprise Edition before 1.21 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors involving “incorrectly encoded quoted-printable emails”.

Affected configurations

NVD

Node

mailenablemailenable_enterpriseMatch1.00

mailenablemailenable_enterpriseMatch1.1

mailenablemailenable_enterpriseMatch1.01

mailenablemailenable_enterpriseMatch1.02

mailenablemailenable_enterpriseMatch1.2

mailenablemailenable_enterpriseMatch1.03

mailenablemailenable_enterpriseMatch1.04

mailenablemailenable_professionalMatch1.2

mailenablemailenable_professionalMatch1.2a

mailenablemailenable_professionalMatch1.5

mailenablemailenable_professionalMatch1.6

mailenablemailenable_professionalMatch1.7

mailenablemailenable_professionalMatch1.17

mailenablemailenable_professionalMatch1.18

mailenablemailenable_professionalMatch1.19

mailenablemailenable_professionalMatch1.51

mailenablemailenable_professionalMatch1.52

mailenablemailenable_professionalMatch1.53

mailenablemailenable_professionalMatch1.54

mailenablemailenable_professionalMatch1.71

mailenablemailenable_professionalMatch1.72

CPENameOperatorVersion
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.00
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.1
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.01
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.02
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.2
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.03
mailenable:mailenable_enterprisemailenable mailenable enterpriseeq1.04
mailenable:mailenable_professionalmailenable mailenable professionaleq1.2
mailenable:mailenable_professionalmailenable mailenable professionaleq1.2a
mailenable:mailenable_professionalmailenable mailenable professionaleq1.5

CPE	Name	Operator	Version
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.00
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.1
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.01
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.02
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.2
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.03
mailenable:mailenable_enterprise	mailenable mailenable enterprise	eq	1.04
mailenable:mailenable_professional	mailenable mailenable professional	eq	1.2
mailenable:mailenable_professional	mailenable mailenable professional	eq	1.2a
mailenable:mailenable_professional	mailenable mailenable professional	eq	1.5

Rows per page:

1-10 of 211

References

secunia.com/advisories/19288

www.mailenable.com/enterprisehistory.asp

www.mailenable.com/professionalhistory.asp

www.osvdb.org/24014

www.securityfocus.com/bid/17161

www.vupen.com/english/advisories/2006/1006

exchange.xforce.ibmcloud.com/vulnerabilities/25315

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.8%

JSON

Related for CVE-2006-1338

nvd1 prion1 nessus1 cvelist1