NASLDB: MailEnable IMAP EXAMINE Command Remote Overflow
General
ID: 20322
Name: MailEnable IMAP EXAMINE Command Remote Overflow
Summary: Checks for EXAMINE command buffer overflow in MailEnable
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS Temporal Vector: CVSS2#E:U/RL:OF/RC:C
Port: 143
Family: Windows
Type: Remote
Description
The remote host is running a version of MailEnable’s IMAP service
that is prone to a buffer overflow attack when processing a EXAMINE
command with a long mailbox name. Once authenticated, an attacker can
exploit this flaw to execute arbitrary code subject to the privileges
of the affected application. There are also reportedly similar issues
with other IMAP commands.
Exploiting
Exploit Available: False
Exploitability Ease: No known exploits are available
Sources
CVE: CVE-2005-4456
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2005/12/20
Patch Release: –
Plugin Release: 2005/12/20
Plugin
Version: 1.18
Filename: mailenable_imap_examine_overflow.nasl
Filesize: 3152 bytes
MD5 Hash: d7c19f9f8ccd83d8b4d267ba9c2a96dc
Identification: Services/imap
Require Keys: –
Dependencies: "find_service1.nasl", "global_settings.nasl"
Copyright: This script is Copyright© 2005-2012 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack