Lucene search

[email protected]CVE-2006-5552

HistoryOct 26, 2006 - 5:07 p.m.

CVE-2006-5552

2006-10-2617:07:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2006-5552

revilloc mailserver

buffer overflow

denial of service

remote code execution

nvd

8.7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.191 Low

EPSS

Percentile

96.2%

JSON

Multiple heap-based buffer overflows in RevilloC MailServer 1.21 and earlier allow remote attackers to cause a denial of service (CPU consumption or application crash) or execute arbitrary code via a long argument to the (1) MAIL FROM or (2) RCPT TO command.

CPENameOperatorVersion
revilloc_solutions:revilloc_mailserverrevilloc solutions revilloc mailserverle1.21

CPE	Name	Operator	Version
revilloc_solutions:revilloc_mailserver	revilloc solutions revilloc mailserver	le	1.21

References

secunia.com/advisories/22559

www.securityfocus.com/bid/20709

www.vupen.com/english/advisories/2006/4181

exchange.xforce.ibmcloud.com/vulnerabilities/29803

www.exploit-db.com/exploits/2650

8.7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.191 Low

EPSS

Percentile

96.2%

JSON