Detections
Analytics
MailEnable IMAP STATUS Command Remote Overflow
high Nessus Network Monitor Plugin ID 3068
Synopsis
The remote host is vulnerable to a buffer overflow.Description
The remote host is running a version of MailEnable's IMAP service that is prone to a buffer overflow vulnerability triggered when processing a STATUS command with a long mailbox name. Once authenticated, an attacker can exploit this flaw to execute arbitrary code subject to the privileges of the affected application.Solution
Upgrade to MailEnable Professional 1.6 or higher or to MailEnable Enterprise Edition 1.1 or higher.See Also
http://archives.neohapsis.com/archives/bugtraq/2005-07/0205.html
http://www.coresecurity.com/common/showdoc.php?idx=467&idxseccion=10
Plugin Details
Severity: High
ID: 3068
Family: IMAP Servers
Published: 7/13/2005
Updated: 3/6/2019
Nessus ID: 19193
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 6
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS v3
Risk Factor: High
Base Score: 8.4
Temporal Score: 7.8
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:mailenable:mailenable
Exploitable With
Core Impact
Metasploit (MailEnable IMAPD (1.54) STATUS Request Buffer Overflow)
Reference Information
CVE: CVE-2005-2278
BID: 14243