Stack-Based Buffer Overflow in Novell NetMail IMAP Daemon
CVE-2006-6761

Currently unrated

Key Information:

Vendor: Novell
Status: Netmail
Vendor: CVE Published:; 27 December 2006

Summary

The vulnerability in Novell NetMail's IMAP daemon (IMAPD) allows remote authenticated users to exploit a stack-based buffer overflow. This occurs when overly long arguments are submitted to the SUBSCRIBE command. Such exploitation can potentially enable attackers to execute arbitrary code on the affected server, posing significant security risks.

References

http://labs.idefense.com/intelligence/vulnerabilities/dis...

third-party-advisoryx_refsource_IDEFENSE

https://secure-support.novell.com/KanisaPlatform/Publishi...

x_refsource_CONFIRM

http://www.kb.cert.org/vuls/id/863313

third-party-advisoryx_refsource_CERT-VN

EPSS Score

45% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 27, 2006
Vulnerability Reserved
Dec 26, 2006