cbcvebase.

Mailenable Standard vulnerabilities

5 known vulnerabilities affecting mailenable/mailenable_standard.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2006-6605P3CRITICALCVSS 10.0≤ 1.982006-12-19
CVE-2006-6605 [CRITICAL] CVE-2006-6605: Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional 1.84, and 2.35 and earlier; and Enterprise 1.41, and 2.35 and earlier before ME-10026 allows remote attackers to execute arbitrary code via a long argument to the PASS command.
nvd
CVE-2005-0804P4MEDIUMCVSS 5.0PoCv1.82005-05-02
CVE-2005-0804 [MEDIUM] CVE-2005-0804: Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service ( Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the mailto field.
nvd
CVE-2006-6997P4CRITICALCVSS 10.0v1.71v1.72+4 more2007-02-12
CVE-2006-6997 [CRITICAL] CVE-2006-6997: Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Pro Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 leads to "weakened authentication security" with unknown impact and attack vectors. NOTE: due to lack of details, it is not clear whether this is the same as CVE-2006-1792.
nvd
CVE-2005-2223P4MEDIUMCVSS 5.0v1.8v1.71+5 more2005-07-12
CVE-2005-2223 [MEDIUM] CVE-2005-2223: Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before 1.6 allows remote attackers to cause a denial of service (crash) during authentication.
nvd
CVE-2006-1792P4CRITICALCVSS 10.0v1.8v1.9+9 more2006-04-15
CVE-2006-1792 [CRITICAL] CWE-119 CVE-2006-1792: Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professiona Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Enterprise Edition before 1.22 has unknown attack vectors and impact related to "authentication exploits". NOTE: this is a different set of affected versions, and probably a different vulnerability than CVE-2006-1337.
nvd