Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:A26FC09E9700ED5DE3B7D61D616812FB
HistoryDec 01, 2006 - 12:00 a.m.

MailEnable IMAP SELECT buffer overflow

2006-12-0100:00:00
SAINT Corporation
download.saintcorporation.com
15

0.011 Low

EPSS

Percentile

84.5%

JSON

Added: 12/01/2006
CVE: CVE-2006-6290
BID: 21362
OSVDB: 31698

Background

MailEnable is a mail server supporting SMTP and POP3 for Windows platforms. MailEnable Professional and MailEnable Enterprise also include IMAP and HTTPMail services.

Problem

A buffer overflow vulnerability in the IMAP service allows an authenticated attacker to execute arbitrary commands by sending a specially crafted SELECT command.

Resolution

Apply the latest hotfix for IMAP.

References

<http://secunia.com/advisories/23080&gt;

Limitations

Exploit works on MailEnable Professional 2.32 with Patch ME-10018 and requires a valid IMAP login name, password, and post office name.

Platforms

Windows

Related

cve 1
saint 3
cvelist 1
nvd 1
checkpoint_advisories 1
nessus 1
cve
cve
CVE-2006-6290
2006-12-05 11:28:00
saint
saint
MailEnable IMAP SELECT buffer overflow
2006-12-01 00:00:00
MailEnable IMAP SELECT buffer overflow
2006-12-01 00:00:00
MailEnable IMAP SELECT buffer overflow
2006-12-01 00:00:00
cvelist
cvelist
CVE-2006-6290
2006-12-05 11:00:00
nvd
nvd
CVE-2006-6290
2006-12-05 11:28:00
checkpoint_advisories
checkpoint_advisories
MailEnable IMAP Service Mailbox Name Buffer Overflow (CVE-2005-3691; CVE-2006-6290)
2009-12-02 00:00:00
nessus
nessus
MailEnable IMAP Server Multiple Buffer Overflow Vulnerabilities (ME-10021)
2006-12-04 00:00:00

0.011 Low

EPSS

Percentile

84.5%

JSON
Related for SAINT:A26FC09E9700ED5DE3B7D61D616812FB
cve1saint3cvelist1nvd1checkpoint_advisories1nessus1