漏洞标题
N/A
漏洞描述信息
基于栈的缓冲区溢出在MailEnable Professional和Enterprise Edition 2.0 through 2.35、Professional Edition 1.6 through 1.84和Enterprise Edition 1.1 through 1.41的Imap服务中允许远程攻击者通过一个预先验证命令 followed by一个构造的参数和一个长字符串来执行任意代码,正如ME-10025热补丁所解决的。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Stack-based buffer overflow in the IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.35, Professional Edition 1.6 through 1.84, and Enterprise Edition 1.1 through 1.41 allows remote attackers to execute arbitrary code via a pre-authentication command followed by a crafted parameter and a long string, as addressed by the ME-10025 hotfix.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
MailEnable IMAP服务处理请求远程栈溢出漏洞
漏洞描述信息
MailEnable是一款商业性质的POP3和SMTP服务器。 MailEnable的IMAP服务处理请求时存在栈溢出漏洞,如果攻击者能够发送特制的命令和数据的话,就可能触发这个漏洞,导致拒绝服务或任意指令执行。
CVSS信息
N/A
漏洞类别
授权问题