Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1338

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-1338
Last Modified 09 Mar 2011 12:00:00
Published 20 Mar 2006 09:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1338

Summary

Webmail in MailEnable Professional Edition before 1.73 and Enterprise Edition before 1.21 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors involving "incorrectly encoded quoted-printable emails".

Vulnerable Systems

Application

  • Mailenable Enterprise 1.00

  • Mailenable Enterprise 1.01

  • Mailenable Enterprise 1.02

  • Mailenable Enterprise 1.03

  • Mailenable Enterprise 1.04

  • Mailenable Enterprise 1.1

  • Mailenable Enterprise 1.2

  • Mailenable Professional 1.17

  • Mailenable Professional 1.18

  • Mailenable Professional 1.19

  • Mailenable Professional 1.2

  • Mailenable Professional 1.2a

  • Mailenable Professional 1.5

  • Mailenable Professional 1.51

  • Mailenable Professional 1.52

  • Mailenable Professional 1.53

  • Mailenable Professional 1.54

  • Mailenable Professional 1.6

  • Mailenable Professional 1.7

  • Mailenable Professional 1.71

  • Mailenable Professional 1.72


References

SECUNIA - 19288

XF - mailenable-webmail-component-dos(25315)

VUPEN - ADV-2006-1006

BID - 17161

OSVDB - 24014

CONFIRM - http://www.mailenable.com/professionalhistory.asp

CONFIRM - http://www.mailenable.com/enterprisehistory.asp


Last Updated: 27 May 2016 10:42:02