CVE-2008-2859

Unspecified vulnerability in the IMAP service in NetWin SurgeMail before 3.9g2 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors related to an "imap command."

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/30739	Vendor Advisory
http://www.netwinsite.com/surgemail/help/updates.htm
http://www.securityfocus.com/bid/29805
http://www.securitytracker.com/id?1020335
http://www.vupen.com/english/advisories/2008/1874/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43171

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:netwin:surgemail::::::::
	cpe:2.3:a:netwin:surgemail:3.8a:::::::*
	cpe:2.3:a:netwin:surgemail:3.8b:::::::*
	cpe:2.3:a:netwin:surgemail:3.8d:::::::*
	cpe:2.3:a:netwin:surgemail:3.8f:::::::*
	cpe:2.3:a:netwin:surgemail:3.8f2:::::::*
	cpe:2.3:a:netwin:surgemail:3.8f3:::::::*
	cpe:2.3:a:netwin:surgemail:3.8i:::::::*
	cpe:2.3:a:netwin:surgemail:3.8i2:::::::*
	cpe:2.3:a:netwin:surgemail:3.8i3:::::::*
	cpe:2.3:a:netwin:surgemail:3.8k:::::::*
	cpe:2.3:a:netwin:surgemail:3.8k2:::::::*
	cpe:2.3:a:netwin:surgemail:3.8k3:::::::*
	cpe:2.3:a:netwin:surgemail:3.8k4:::::::*
	cpe:2.3:a:netwin:surgemail:3.8m:::::::*
	cpe:2.3:a:netwin:surgemail:3.8o:::::::*
	cpe:2.3:a:netwin:surgemail:3.8q:::::::*
	cpe:2.3:a:netwin:surgemail:3.8s:::::::*
	cpe:2.3:a:netwin:surgemail:3.8u:::::::*
	cpe:2.3:a:netwin:surgemail:3.9a:::::::*
	cpe:2.3:a:netwin:surgemail:3.9c:::::::*
	cpe:2.3:a:netwin:surgemail:3.9e:::::::*

History

No history.

Information

Published : 2008-06-25 12:36

Updated : 2017-08-08 01:31

NVD link : CVE-2008-2859

Mitre link : CVE-2008-2859

CVE.ORG link : CVE-2008-2859

JSON object : View

Products Affected

netwin

surgemail

CWE

NVD-CWE-noinfo

{"id": "CVE-2008-2859", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-06-25T12:36:00.000", "references": [{"url": "http://secunia.com/advisories/30739", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.netwinsite.com/surgemail/help/updates.htm", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/29805", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1020335", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/1874/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43171", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the IMAP service in NetWin SurgeMail before 3.9g2 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors related to an \"imap command.\""}, {"lang": "es", "value": "Vulnerabilidad no especificada en el servicio de IMAP en NetWin SurgeMail anterior a 3.9g2; permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del demonio) mediante vectores desconocidos relacionados con un \"comando imap\"."}], "lastModified": "2017-08-08T01:31:23.123", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:netwin:surgemail:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D180C666-C5E6-44C9-B61C-1C7ECFB38F24", "versionEndIncluding": "3.9g"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12FCF5D0-3E98-48E4-840C-5DD47A893AA0"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B2E8CA7-DAF6-4C30-8ED1-9FA6D4A660D9"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8d:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C384BC3-603B-4409-B473-F3213D05DB95"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C81E2733-0791-4D5E-990F-B40859EEA7C1"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8f2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1CE77D8-ADB3-4A3E-9D79-4F9739F7549A"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8f3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50C06B4F-1DEC-4622-B060-184762418112"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8i:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19390313-1B1C-4388-AA3B-1A470416FADF"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8i2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB1FD0B1-DEE5-4765-9538-FBA20E8B1559"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8i3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30495DFC-EC4F-4449-851A-3358C9BCBF69"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8k:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C4BE37B-BA86-4B1D-A1B6-B5910F61171D"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8k2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAF32266-AB58-4215-B7FF-CC882835EE79"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8k3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A437EB1A-2E12-4AAB-8817-57D17C2E21E9"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8k4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AAB36A8-0F51-4424-B6BA-F1A29C759717"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25C21957-FA45-4FCE-AFFE-4A0E1345CFE9"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8o:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F1108C3-E6C1-42F2-8A49-A4DEFB5C4DCF"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8q:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C96445D-DC59-494C-BA42-09A342F39252"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC095432-C4C3-4566-8DBC-8513D47778AF"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.8u:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "970DDF6C-2DDB-44C6-89F7-22314102C4C7"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.9a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5558770D-276A-4136-BB50-C2B6CB8C4AC1"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.9c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFF5ADB9-B57C-4668-A654-29DAE75792CF"}, {"criteria": "cpe:2.3:a:netwin:surgemail:3.9e:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B7F09A9-9719-47C2-8021-853F699A7553"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}