CVE-2006-6291

Stack overflow in the IMAP module (MEIMAPS.EXE) in MailEnable Professional 1.6 through 1.83 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.40 and 2.0 through 2.33, allows remote authenticated users to cause a denial of service (crash) via a long argument containing * (asterisk) and ? (question mark) characters to the DELETE command, as addressed by the ME-10020 hotfix.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mailenable:mailenable:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:mailenable:mailenable:*:*:*:*:professional:*:*:*
cpe:2.3:a:mailenable:mailenable:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:mailenable:mailenable:*:*:*:*:professional:*:*:*

History

No history.

Information

Published : 2006-12-05 11:28

Updated : 2024-02-04 17:13


NVD link : CVE-2006-6291

Mitre link : CVE-2006-6291

CVE.ORG link : CVE-2006-6291


JSON object : View

Products Affected

mailenable

  • mailenable
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer