Denial of Service Vulnerability in Apache James Mail Server 2.2.0
CVE-2006-2806

Currently unrated

Key Information:

Vendor: Apache
Status: James
Vendor: CVE Published:; 5 June 2006

What is CVE-2006-2806?

The SMTP server in Apache James Mail Server version 2.2.0 is susceptible to a denial of service attack, allowing remote attackers to induce significant CPU consumption through the submission of excessively long arguments within the MAIL command. This can lead to performance degradation and service interruption for users, resulting in potential downtime or diminished user experience.

References

http://www.securityfocus.com/archive/1/435278/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://advisories.echo.or.id/adv/adv31-y3dips-2006.txt

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/26786

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 5, 2006
Vulnerability Reserved
Jun 5, 2006