CVE-2006-6423

Published Dec 12, 2006

Last updated 6 years ago

CVSS info 10.0

Overview

Description: Stack-based buffer overflow in the IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.35, Professional Edition 1.6 through 1.84, and Enterprise Edition 1.1 through 1.41 allows remote attackers to execute arbitrary code via a pre-authentication command followed by a crafted parameter and a long string, as addressed by the ME-10025 hotfix.
Source: PSIRT-CNA@flexerasoftware.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45540A37-2CBF-453F-8EFF-696B9318499F"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39F83EAD-9296-4A24-BF7F-905CC93FEADD"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB6FB230-80C5-4B8D-898E-8C298B2207C3"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A640E156-FF31-48E6-9D98-E2E669C01C0D"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04B96ED6-16EB-42A4-BDC6-0EE45EA38B62"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "455DD7A6-A83E-4200-B41B-505118FE8E14"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A5462F1-B6D9-43F0-982C-2E4534E79E02"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3248B134-BF1F-4109-A0DC-DF9A01CC8156"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "849A1A19-83BA-4984-947B-C47DAA515908"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E3C2B12-AF3A-44D9-9C91-58F4AB1FE188"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71A25D16-21ED-4EAD-A535-6000E77ECF35"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7BAC3EA-3267-4AE2-A172-3B8D63B09B60"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC5AC063-9D7B-45A2-9D90-B85E2DFBB6F6"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD73FDB9-4A1E-4A8A-A541-21C7726A152C"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1491392B-467F-4CA0-B6D7-2A7478C4DFA1"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C3F71BC-639F-4966-B05D-5E3BB9C5FA3D"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "056C7707-A07C-4F4A-8390-97885581802F"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0025F745-D34D-4275-9A3B-5530B7A0A520"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFB9ECA3-FFF5-447D-B685-666669410D7F"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B56A4283-E0DB-42CE-9551-FC3DBC7E50A4"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F80F2B0F-8461-47C3-A07A-98681D255478"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2E1599A-9928-4A06-B650-1238D62CD2C2"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E07825D6-EBA0-42B5-BE18-DA3D440A986D"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.33:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C153370-5AD2-4020-9656-5BDD7644F692"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50451621-1AF5-4A17-9355-62D78DDAE7A3"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC62336F-5F8F-4FF7-B2FB-CBBBAEC77162"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75BF5AF2-FAD4-48B4-B893-035F5A82A58D"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.37:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4F5CF79-543F-4ECA-B5A3-5212A1D0A18E"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.38:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D80141E2-F98C-458C-BAFB-8272BD2BBE4D"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.39:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCA17BD7-A9FC-4FA3-88D4-38D9BD197963"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "393240E7-FE4F-4535-B5F0-6609F4A01646"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.41:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D83D1EA7-A3D6-41AA-B922-18885328D292"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:2.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0743346-9637-498F-BAAF-B193E41A7927"
          },
          {
            "criteria": "cpe:2.3:a:mailenable:mailenable_professional:1.84:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "201B610A-DD27-48D2-A3EF-DFEBBDEA04BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References