Buffer Overflow Vulnerability in MailEnable Professional and Enterprise Products
CVE-2005-4456

Currently unrated

Key Information:

Vendor

Mailenable

Status
Mailenable Enterprise
Mailenable Professional
Vendor
CVE Published:
21 December 2005

What is CVE-2005-4456?

MailEnable Professional 1.71 and Enterprise 1.1 are affected by multiple buffer overflow vulnerabilities. These flaws allow remote attackers to conduct denial of service attacks or potentially execute arbitrary code by sending specially crafted long commands such as LIST, LSUB, and UID FETCH. A successful exploitation may lead to service crashes or unauthorized operations, emphasizing the need for immediate patching to mitigate risks.

References

http://secunia.com/advisories/18134
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/15985
vdb-entryx_refsource_BID
http://seclists.org/lists/fulldisclosure/2005/Dec/1036.html
mailing-listx_refsource_FULLDISC

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.