Lucene search

[email protected]CVE-2017-15223

HistoryOct 24, 2017 - 5:29 p.m.

CVE-2017-15223

2017-10-2417:29:00

CWE-835

[email protected]

web.nvd.nist.gov

cve-2017-15223

argosoft mini mail server

dos vulnerability

remote attack

cpu resources

memory consumption

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.3 Medium

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.1%

JSON

Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote attackers to waste CPU resources (memory consumption) via unspecified vectors, possibly triggering an infinite loop.

Affected configurations

NVD

Node

argosoftmini_mail_serverRange≤1.0.0.2

CPENameOperatorVersion
argosoft:mini_mail_serverargosoft mini mail serverle1.0.0.2

CPE	Name	Operator	Version
argosoft:mini_mail_server	argosoft mini mail server	le	1.0.0.2

References

www.exploit-db.com/exploits/43026/

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.3 Medium

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.1%

JSON

Related for CVE-2017-15223

packetstorm1 cvelist1 zdt1 exploitpack1 prion1 nvd1 exploitdb1