MailEnable SMTP Server < 1.5.1 Undisclosed Vulnerabilities

High Nessus Network Monitor Plugin ID 2384

Synopsis

The remote host is missing a critical security patch or upgrade.

Description

The remote host is running a version of MailEnable Professional that is older than version 1.5.1. The remote version of this software is known to be prone to an undisclosed vulnerability that has been fixed in version 1.5.1.

Solution

Upgrade to version 1.5.1 or higher.

Plugin Details

Severity: High

ID: 2384

Family: SMTP Servers

Published: 2004/11/03

Modified: 2016/11/23

Dependencies: 2004, 2005

Nessus ID: 15611

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 7.3

Temporal Score: 6.4

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

BID: 11578