Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0537

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0537
Last Modified 07 Mar 2011 09:30:15
Published 03 Feb 2006 07:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0537

Summary

Buffer overflow in the POP3 server in Kinesphere Corporation eXchange before 5.0.060125 allows remote attackers to execute arbitrary code via a long RCPT TO argument.

Vulnerable Systems

Application

  • Kinesphere Corporation Exchange Pop3 5.0 Build 050203


References

XF - exchangepop3-rcptto-bo(24477)

VUPEN - ADV-2006-0437

BID - 16485

OSVDB - 22907

MILW0RM - 1466

SECTRACK - 1015580

SECUNIA - 18687

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/exchangepop3.pl

BUGTRAQ - 20060203 Exchangepop3 rcpt buffer overflow vulnerability

SREASON - 408


Last Updated: 27 May 2016 10:41:42