CyberSec.Space Logo
Back to CVE Browser

CVE-2006-6423

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1080%
EPSS Percentile13.11th
PublishedDec 12, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.35, Professional Edition 1.6 through 1.84, and Enterprise Edition 1.1 through 1.41 allows remote attackers to execute arbitrary code via a pre-authentication command followed by a crafted parameter and a long string, as addressed by the ME-10025 hotfix.

Affected Platforms (CPE)

πŸ“¦
Mailenable

Mailenable Enterprise

= 1.1
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.2
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.11
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.12
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.13
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.14
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.15
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.16
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.17
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.18
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.19
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.21
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.22
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.23
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.24
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.25
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.26
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.27
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.28
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.29
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.30
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.31
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.32
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.33
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.34
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.35
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.36
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.37
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.38
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.39
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.40
πŸ“¦
Mailenable

Mailenable Enterprise

= 1.41
πŸ“¦
Mailenable

Mailenable Enterprise

= 2.35
πŸ“¦
Mailenable

Mailenable Professional

= 1.84

References & Advisories

πŸ”— http://secunia.com/advisories/23201
πŸ”— http://secunia.com/secunia_research/2006-73/advisory/
πŸ”— http://securityreason.com/securityalert/2022
πŸ”— http://www.mailenable.com/hotfix/
πŸ”— http://www.securityfocus.com/archive/1/454075/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/21492
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30796
πŸ”— http://secunia.com/advisories/23201

Related Vulnerabilities

CVE-2006-699710.0

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73,...

CVE-2006-179210.0

Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Ent...

CVE-2006-660510.0

Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional 1.84, and 2.35 and earlier; a...

CVE-2019-129249.8

MailEnable Enterprise Premium 10.23 was vulnerable to XML External Entity Injection (XXE) attacks that could be exploited by an un...