|
Family: Gain root remotely --> Category: infos
MailEnable IMAP Service Multiple Buffer Overflow Vulnerabilities (ME-10021) Vulnerability Scan
Vulnerability Scan Summary Checks version of MailEnable's MEIMAPS.exe
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote IMAP server is affected by multiple buffer overflow
vulnerabilities.
Description :
The IMAP server bundled with the version of MailEnable installed on
the remote host reportedly fails to handle malicious arguments to the
'EXAMINE', 'SELECT', and 'DELETE' commands. An authenticated remote
attacker may be able to exploit these issues to crash the affected
service or to execute arbitrary code with LOCAL SYSTEM rights.
See also :
http://secunia.com/secunia_research/2006-71/advisory/
http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0535.html
http://www.mailenable.com/hotfix/
Solution :
Apply Hotfix ME-10021.
Threat Level:
Medium / CVSS Base Score : 6.0
(AV:R/AC:L/Au:R/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|