ByteOS Network

NVD Vulnerability Details :

CVE-2007-3796

Analyzed

Source-cve@mitre.org

Published At-17 Jul, 2007 | 23:30

Updated At-14 Feb, 2024 | 01:17

The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer truncation due to length inconsistencies between variables.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.6	HIGH	AV:N/AC:H/Au:N/C:C/I:C/A:C

Type: Primary

Version: 2.0

Base score: 7.6

Base severity: HIGH

Vector:

AV:N/AC:H/Au:N/C:C/I:C/A:C

CPE Matches

mailmarshal>>mailmarshal_smtp>>Versions up to 6.2.0(inclusive)

cpe:2.3:a:mailmarshal:mailmarshal_smtp:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

Evaluator Impact

"Successful exploitation requires that the attacker knows the email address of the target user."

Evaluator Solution

The vendor has released version 6.2.1 to address this issue.

References

Hyperlink	Source	Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2007-July/064676.html	cve@mitre.org	Patch
http://secunia.com/advisories/26018	cve@mitre.org	Vendor Advisory
http://securityreason.com/securityalert/2895	cve@mitre.org	N/A
http://www.sec-1labs.co.uk/advisories/BTA_Full.pdf	cve@mitre.org	URL Repurposed
http://www.securityfocus.com/bid/24936	cve@mitre.org	N/A