Denial of Service Flaw in MailEnable Webmail Component
CVE-2006-1338

Currently unrated

Key Information:

Vendor: Mailenable
Status: Mailenable Enterprise; Mailenable Professional
Vendor: CVE Published:; 21 March 2006

What is CVE-2006-1338?

The MailEnable Webmail component in Professional Edition versions prior to 1.73 and Enterprise Edition versions prior to 1.21 is susceptible to a denial of service attack. This vulnerability allows remote attackers to exhaust server resources, notably CPU consumption, through unspecified methods that involve incorrectly encoded quoted-printable emails. As a result, legitimate users may experience significant performance degradation or unavailability of the webmail service.

References

http://www.mailenable.com/professionalhistory.asp

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/25315

vdb-entryx_refsource_XF

http://www.mailenable.com/enterprisehistory.asp

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2006
Vulnerability Reserved
Mar 20, 2006

CVE-2006-1338 Data

JSON

Mailenable

What is CVE-2006-1338?

References

Timeline