CVE-2005-1014

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Buffer overflow in the IMAP service for MailEnable Enterprise 1.04 and earlier and Professional 1.54 allows remote attackers to execute arbitrary code via a long AUTHENTICATE command.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2005-April/033123.html
Exploit
Vendor Advisory
http://secunia.com/advisories/14812
Patch
Vendor Advisory
http://securitytracker.com/id?1013637
Patch
http://www.mailenable.com/hotfix/
Patch
http://www.securityfocus.com/bid/12995
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/19947
http://lists.grok.org.uk/pipermail/full-disclosure/2005-April/033123.html
Exploit
Vendor Advisory
http://secunia.com/advisories/14812
Patch
Vendor Advisory
http://securitytracker.com/id?1013637
Patch
http://www.mailenable.com/hotfix/
Patch
http://www.securityfocus.com/bid/12995
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/19947

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mailenable:mailenable_enterprise:1.0:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_enterprise:1.01:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_enterprise:1.02:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_enterprise:1.03:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_enterprise:1.04:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:1.5:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:1.51:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:1.52:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:1.53:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:1.54:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.172

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cwwc-hqfx-x565

github

почти 4 года назад