Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.15852 |
Categoría: | Denial of Service |
Título: | MailEnable IMAP Service Remote Buffer Overflows |
Resumen: | The target is running at least one vulnerable instance of MailEnable's IMAP; service. |
Descripción: | Summary: The target is running at least one vulnerable instance of MailEnable's IMAP service. Vulnerability Insight: Two flaws exist in MailEnable Professional Edition 1.52 and earlier as well as MailEnable Enterprise Edition 1.01 and earlier - a stack-based buffer overflow and an object pointer overwrite. Vulnerability Impact: A remote attacker can use either vulnerability to execute arbitrary code on the target. Solution: Apply the IMAP hotfix dated 25 November 2004 and found at the references. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
Referencia Cruzada: |
BugTraq ID: 11755 Common Vulnerability Exposure (CVE) ID: CVE-2004-2501 http://www.securityfocus.com/bid/11755 Bugtraq: 20041125 Remote buffer overflow in MailEnable IMAP service [Hat-Squad Advisory] (Google Search) http://archives.neohapsis.com/archives/bugtraq/2004-11/0349.html http://www.hat-squad.com/en/000102.html http://www.osvdb.org/12135 http://www.osvdb.org/12136 http://securitytracker.com/id?1012327 http://secunia.com/advisories/13318 XForce ISS Database: mailenable-imap-bo(18285) https://exchange.xforce.ibmcloud.com/vulnerabilities/18285 XForce ISS Database: mailenable-imap-code-execution(18286) https://exchange.xforce.ibmcloud.com/vulnerabilities/18286 |
Copyright | Copyright (C) 2004 George A. Theall |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |