CVE-2006-6423

{"id": "CVE-2006-6423", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-12-12T02:28:00.000", "references": [{"url": "http://secunia.com/advisories/23201", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/secunia_research/2006-73/advisory/", "tags": ["Patch", "Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://securityreason.com/securityalert/2022", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.mailenable.com/hotfix/", "tags": ["Patch", "Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securityfocus.com/archive/1/454075/100/0/threaded", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securityfocus.com/bid/21492", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30796", "source": "PSIRT-CNA@flexerasoftware.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in the IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.35, Professional Edition 1.6 through 1.84, and Enterprise Edition 1.1 through 1.41 allows remote attackers to execute arbitrary code via a pre-authentication command followed by a crafted parameter and a long string, as addressed by the ME-10025 hotfix."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en el servicio IMAP para MailEnable Professional y Enterprise Edition 2.0 hasta 2.35, Professional Edition 1.6 hasta 1.84, y Enterprise Edition 1.1 hasta 1.41 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante un comando de pre-autenticaci\u00f3n seguido de un par\u00e1metro manipulado y una cadena larga como se indica en la actualizaci\u00f3n r\u00e1pida (hotfix) ME-10025"}], "lastModified": "2018-10-17T21:48:09.660", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45540A37-2CBF-453F-8EFF-696B9318499F"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39F83EAD-9296-4A24-BF7F-905CC93FEADD"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB6FB230-80C5-4B8D-898E-8C298B2207C3"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A640E156-FF31-48E6-9D98-E2E669C01C0D"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04B96ED6-16EB-42A4-BDC6-0EE45EA38B62"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "455DD7A6-A83E-4200-B41B-505118FE8E14"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A5462F1-B6D9-43F0-982C-2E4534E79E02"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3248B134-BF1F-4109-A0DC-DF9A01CC8156"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "849A1A19-83BA-4984-947B-C47DAA515908"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E3C2B12-AF3A-44D9-9C91-58F4AB1FE188"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71A25D16-21ED-4EAD-A535-6000E77ECF35"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7BAC3EA-3267-4AE2-A172-3B8D63B09B60"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC5AC063-9D7B-45A2-9D90-B85E2DFBB6F6"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD73FDB9-4A1E-4A8A-A541-21C7726A152C"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1491392B-467F-4CA0-B6D7-2A7478C4DFA1"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C3F71BC-639F-4966-B05D-5E3BB9C5FA3D"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "056C7707-A07C-4F4A-8390-97885581802F"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0025F745-D34D-4275-9A3B-5530B7A0A520"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFB9ECA3-FFF5-447D-B685-666669410D7F"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.29:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B56A4283-E0DB-42CE-9551-FC3DBC7E50A4"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F80F2B0F-8461-47C3-A07A-98681D255478"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2E1599A-9928-4A06-B650-1238D62CD2C2"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E07825D6-EBA0-42B5-BE18-DA3D440A986D"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C153370-5AD2-4020-9656-5BDD7644F692"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50451621-1AF5-4A17-9355-62D78DDAE7A3"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC62336F-5F8F-4FF7-B2FB-CBBBAEC77162"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75BF5AF2-FAD4-48B4-B893-035F5A82A58D"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4F5CF79-543F-4ECA-B5A3-5212A1D0A18E"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D80141E2-F98C-458C-BAFB-8272BD2BBE4D"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCA17BD7-A9FC-4FA3-88D4-38D9BD197963"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "393240E7-FE4F-4535-B5F0-6609F4A01646"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:1.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D83D1EA7-A3D6-41AA-B922-18885328D292"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_enterprise:2.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0743346-9637-498F-BAAF-B193E41A7927"}, {"criteria": "cpe:2.3:a:mailenable:mailenable_professional:1.84:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "201B610A-DD27-48D2-A3EF-DFEBBDEA04BA"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com"}