Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2006-5177
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-10 Oct, 2006 | 04:06
Updated At-20 Jul, 2017 | 01:33

The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.09.3HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE Matches
mailenable
mailenable
>>mailenable_enterprise>>2.0
cpe:2.3:a:mailenable:mailenable_enterprise:2.0:*:*:*:*:*:*:*
mailenable
mailenable
>>mailenable_professional>>2.0
cpe:2.3:a:mailenable:mailenable_professional:2.0:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-119Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://labs.musecurity.com/advisories/MU-200609-01.txtcve@mitre.org
Patch
Vendor Advisory
http://secunia.com/advisories/22179cve@mitre.org
Patch
Vendor Advisory
http://www.mailenable.com/hotfix/cve@mitre.org
Patch
http://www.securityfocus.com/bid/20290cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2006/3862cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/29286cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/29287cve@mitre.org
N/A
Change History
0Changes found
Details not found