Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gain root remotely >> MailEnable IMAP Service Multiple Buffer Overflow Vulnerabilities (ME-10025)


Vulnerability Assessment Details

MailEnable IMAP Service Multiple Buffer Overflow Vulnerabilities (ME-10025)

Vulnerability Assessment Summary
Checks version of MailEnable's MEIMAPS.exe

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote IMAP server is affected by multiple buffer overflows.

Description :

The IMAP server bundled with the version of MailEnable installed on
the remote host reportedly is affected by multiple and as yet
unspecified buffer overflows.

Note that it is not currently known whether the issues listed in
ME-10023 and ME-10025 require authentication or not, but successful
exploitation will permit a possible hacker to crash the service service or to
execute arbitrary code with LOCAL SYSTEM rights.

See also :

http://www.mailenable.com/hotfix/

Solution :

Apply Hotfix ME-10025.

Network Security Threat Level:

Critical / CVSS Base Score : 10
(AV:R/AC:L/Au:NR/C:C/I:C/A:C/B:N)

Networks Security ID: 21492, 21493

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors


HP ProLiant DL380 Gen9 8SFF Server - E5-2698 v3 - 32 Cores- 128 GB Ram - 600 GB picture

HP ProLiant DL380 Gen9 8SFF Server - E5-2698 v3 - 32 Cores- 128 GB Ram - 600 GB

$229.00



Lenovo Desktop Computer PC Xeon, up to 32GB RAM, 3TB SSD, Windows 11/10 Pro WiFi picture

Lenovo Desktop Computer PC Xeon, up to 32GB RAM, 3TB SSD, Windows 11/10 Pro WiFi

$99.00



Dell Poweredge R630 2x Xeon E5-2670 v3 2.3ghz 24-Cores  32gb  180GB SSD  495w picture

Dell Poweredge R630 2x Xeon E5-2670 v3 2.3ghz 24-Cores 32gb 180GB SSD 495w

$169.99



Dell Poweredge R620 2x E5-2670 2.6ghz 16-Cores / 32gb / H710 / 2x Trays / 750w picture

Dell Poweredge R620 2x E5-2670 2.6ghz 16-Cores / 32gb / H710 / 2x Trays / 750w

$134.99



Intel Xeon E5-2697 V2 2.7GHz 12 Core 30M LGA2011 130W SR19H CPU Processor picture

Intel Xeon E5-2697 V2 2.7GHz 12 Core 30M LGA2011 130W SR19H CPU Processor

$24.99



Intel SR2N7 Xeon E5-2680V4 2.40Ghz 14-Core Socket 2011 CPU Processor Broadwell picture

Intel SR2N7 Xeon E5-2680V4 2.40Ghz 14-Core Socket 2011 CPU Processor Broadwell

$15.00



Intel Xeon X5690 SLBVX 3.46GHZ 12MB 6.4GT/s LGA 1366/Socket B Six-Core CPU *km picture

Intel Xeon X5690 SLBVX 3.46GHZ 12MB 6.4GT/s LGA 1366/Socket B Six-Core CPU *km

$29.99



Matched Pair - Intel Xeon E5-2683 v4 2.1GHz 16-Core Processor CPU LGA2011 SR2JT picture

Matched Pair - Intel Xeon E5-2683 v4 2.1GHz 16-Core Processor CPU LGA2011 SR2JT

$39.99



Intel Xeon Gold 6248 SRF90 2.5GHz 20-Core 28MB CPU Processor C5 picture

Intel Xeon Gold 6248 SRF90 2.5GHz 20-Core 28MB CPU Processor C5

$139.49



Dell Precision T3600 Xeon E5-1607 3GHz 32GB RAM NO HDD NVIDIA NO OS Good picture

Dell Precision T3600 Xeon E5-1607 3GHz 32GB RAM NO HDD NVIDIA NO OS Good

$89.99



Discussions

No Discussions have been posted on this vulnerability.