|
Family: Denial of Service --> Category: infos
MailEnable IMAP Server EXAMINE Command Denial of Service Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for EXAMINE command denial of service vulnerability in MailEnable IMAP server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote IMAP server is susceptible to denial of service attacks.
Description :
The remote host is running MailEnable, a commercial mail server for
Windows.
According to the version number in its banner, the IMAP server bundled
with the installation of MailEnable Professional on the remote host
may crash when handling certain EXAMINE commands. An authenticated
attacker may be able to leverage this issue to deny service to users
with a specially-crafted EXAMINE command.
See also :
http://www.mailenable.com/professionalhistory.asp
Solution :
Upgrade to MailEnable Professional 1.72 or later.
Threat Level:
Low / CVSS Base Score : 2.3
(AV:R/AC:L/Au:NR/C:N/I:N/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|