Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4646

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-4646
Last Modified 07 Mar 2011 09:58:56
Published 31 Aug 2007 07:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4646

Summary

Buffer overflow in the pop3 service in Hexamail Server 3.0.0.001 Lite allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long USER command.

Vulnerable Systems

Application

  • Hexamail Server 3.0.0.001 Lite


References

VUPEN - ADV-2007-3044

MILW0RM - 4344

XF - hexamailserver-pop-bo(36369)

SECTRACK - 1018637

BID - 25496

SECUNIA - 26666


Last Updated: 27 May 2016 10:45:56