CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-6605

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1850%
EPSS Percentile32.34th
Published2006年12月19日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional 1.84, and 2.35 and earlier; and Enterprise 1.41, and 2.35 and earlier before ME-10026 allows remote attackers to execute arbitrary code via a long argument to the PASS command.

Affected Platforms (CPE)

📦
Mailenable

Mailenable Enterprise

<= 2.35
📦
Mailenable

Mailenable Enterprise

= 1.41
📦
Mailenable

Mailenable Professional

<= 2.35
📦
Mailenable

Mailenable Professional

= 1.84
📦
Mailenable

Mailenable Standard

<= 1.98

References & Advisories

🔗 http://secunia.com/advisories/23127
🔗 http://secunia.com/secunia_research/2006-75/advisory/
🔗 http://securityreason.com/securityalert/2053
🔗 http://securitytracker.com/id?1017395
🔗 http://www.mailenable.com/hotfix/
🔗 http://www.securityfocus.com/archive/1/454713/100/0/threaded
🔗 http://www.securityfocus.com/bid/21645
🔗 http://www.vupen.com/english/advisories/2006/5052

相關漏洞威脅

CVE-2006-699710.0

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73,...

CVE-2006-179210.0

Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Ent...

CVE-2006-642310.0

Stack-based buffer overflow in the IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.35, Professional ...

CVE-2019-129249.8

MailEnable Enterprise Premium 10.23 was vulnerable to XML External Entity Injection (XXE) attacks that could be exploited by an un...