Mailenable Standard vulnerabilities
5 known vulnerabilities affecting mailenable/mailenable_standard.
Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-6605P3CRITICALCVSS 10.0≤ 1.982006-12-19
CVE-2006-6605 [CRITICAL] CVE-2006-6605: Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional
Stack-based buffer overflow in the POP service in MailEnable Standard 1.98 and earlier; Professional 1.84, and 2.35 and earlier; and Enterprise 1.41, and 2.35 and earlier before ME-10026 allows remote attackers to execute arbitrary code via a long argument to the PASS command.
nvd
CVE-2005-0804P4MEDIUMCVSS 5.0PoCv1.82005-05-02
CVE-2005-0804 [MEDIUM] CVE-2005-0804: Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (
Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the mailto field.
nvd
CVE-2006-6997P4CRITICALCVSS 10.0v1.71v1.72+4 more2007-02-12
CVE-2006-6997 [CRITICAL] CVE-2006-6997: Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Pro
Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 leads to "weakened authentication security" with unknown impact and attack vectors. NOTE: due to lack of details, it is not clear whether this is the same as CVE-2006-1792.
nvd
CVE-2005-2223P4MEDIUMCVSS 5.0v1.8v1.71+5 more2005-07-12
CVE-2005-2223 [MEDIUM] CVE-2005-2223: Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before
Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before 1.6 allows remote attackers to cause a denial of service (crash) during authentication.
nvd
CVE-2006-1792P4CRITICALCVSS 10.0v1.8v1.9+9 more2006-04-15
CVE-2006-1792 [CRITICAL] CWE-119 CVE-2006-1792: Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professiona
Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Enterprise Edition before 1.22 has unknown attack vectors and impact related to "authentication exploits". NOTE: this is a different set of affected versions, and probably a different vulnerability than CVE-2006-1337.
nvd