MailEnable IMAP EXAMINE Command Remote Overflow

This script is Copyright (C) 2005-2012 Tenable Network Security, Inc.


Synopsis :

It is possible to execute code on the remote IMAP server.

Description :

The remote host is running a version of MailEnable's IMAP service
that is prone to a buffer overflow attack when processing a EXAMINE
command with a long mailbox name. Once authenticated, an attacker can
exploit this flaw to execute arbitrary code subject to the privileges
of the affected application. There are also reportedly similar issues
with other IMAP commands.

See also :

http://www.nessus.org/u?4fd7ed9c

Solution :

Install Hotfix ME-10010 for MailEnable Professional 1.71 and earlier or
MailEnable Enterprise Edition 1.1 and earlier.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 5.8
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 20322 (mailenable_imap_examine_overflow.nasl)

Bugtraq ID: 15985

CVE ID: CVE-2005-4456

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now