Back to search
CVE-2007-0955
Published: Feb 15, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The NTLM_UnPack_Type3 function in MENTLM.dll in MailEnable Professional 2.35 and earlier allows remote attackers to cause a denial of service (application crash) via certain base64-encoded data following an AUTHENTICATE NTLM command to the imap port (143/tcp), which results in an out-of-bounds read.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
33195
vdb-entry
x_refsource_OSVDB
ADV-2007-0614
vdb-entry
x_refsource_VUPEN
20070214 MailEnable DoS POC
mailing-list
x_refsource_FULLDISC
20070214 MailEnable DoS POC-2
mailing-list
x_refsource_FULLDISC
24139
third-party-advisory
x_refsource_SECUNIA
mailenable-ntlm-dos(32482)
vdb-entry
x_refsource_XF
2249
third-party-advisory
x_refsource_SREASON
20071214 MailEnable DoS POC
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now