CVE-2006-5176

Опубликовано: 10 окт. 2006

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Buffer overflow in NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to execute arbitrary code via "the signature field of NTLM Type 1 messages".

Ссылки

http://labs.musecurity.com/advisories/MU-200609-01.txt
Patch
http://secunia.com/advisories/22179
Patch
Vendor Advisory
http://www.mailenable.com/hotfix/
Patch
http://www.securityfocus.com/bid/20290
Patch
http://www.vupen.com/english/advisories/2006/3862
https://exchange.xforce.ibmcloud.com/vulnerabilities/29284
http://labs.musecurity.com/advisories/MU-200609-01.txt
Patch
http://secunia.com/advisories/22179
Patch
Vendor Advisory
http://www.mailenable.com/hotfix/
Patch
http://www.securityfocus.com/bid/20290
Patch
http://www.vupen.com/english/advisories/2006/3862
https://exchange.xforce.ibmcloud.com/vulnerabilities/29284

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mailenable:mailenable_enterprise:2.0:*:*:*:*:*:*:*

cpe:2.3:a:mailenable:mailenable_professional:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.12717

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-9w8x-9hv3-2p53

github

почти 4 года назад