CVE-2008-1276
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.5 High
AI Score
Confidence
High
0.169 Low
EPSS
Percentile
96.1%
Multiple buffer overflows in the IMAP service (MEIMAPS.EXE) in MailEnable Professional Edition and Enterprise Edition 3.13 and earlier allow remote authenticated attackers to execute arbitrary code via long arguments to the (1) FETCH, (2) EXAMINE, and (3) UNSUBSCRIBE commands.
Affected configurations
References
aluigi.altervista.org/adv/maildisable-adv.txt
secunia.com/advisories/29277
securityreason.com/securityalert/3724
www.securityfocus.com/archive/1/489270/100/0/threaded
www.securityfocus.com/bid/28145
www.securitytracker.com/id?1019565
www.vupen.com/english/advisories/2008/0799/references
exchange.xforce.ibmcloud.com/vulnerabilities/41058
www.exploit-db.com/exploits/5249
Related
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.5 High
AI Score
Confidence
High
0.169 Low
EPSS
Percentile
96.1%