Vulnerabilities > CVE-2005-1348 - Unspecified vulnerability in Mailenable Enterprise and Mailenable Professional
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier and Professional 1.54 and earlier allows remote attackers to execute arbitrary code via a long HTTP Authorization header.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description MailEnable Enterprise & Professional https Remote BoF Exploit. CVE-2005-1348. Remote exploit for windows platform id EDB-ID:952 last seen 2016-01-31 modified 2005-04-25 published 2005-04-25 reporter CorryL source https://www.exploit-db.com/download/952/ title MailEnable Enterprise & Professional https Remote BoF Exploit description MailEnable Authorization Header Buffer Overflow. CVE-2005-1348. Remote exploit for windows platform id EDB-ID:16781 last seen 2016-02-02 modified 2010-07-07 published 2010-07-07 reporter metasploit source https://www.exploit-db.com/download/16781/ title MailEnable Authorization Header Buffer Overflow
Metasploit
description | This module exploits a remote buffer overflow in the MailEnable web service. The vulnerability is triggered when a large value is placed into the Authorization header of the web request. MailEnable Enterprise Edition versions prior to 1.0.5 and MailEnable Professional versions prior to 1.55 are affected. |
id | MSF:EXPLOIT/WINDOWS/HTTP/MAILENABLE_AUTH_HEADER |
last seen | 2020-03-11 |
modified | 2017-09-14 |
published | 2007-01-07 |
references | |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/mailenable_auth_header.rb |
title | MailEnable Authorization Header Buffer Overflow |
Packetstorm
data source | https://packetstormsecurity.com/files/download/83047/mailenable_auth_header.rb.txt |
id | PACKETSTORM:83047 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | David Maciejak |
source | https://packetstormsecurity.com/files/83047/MailEnable-Authorization-Header-Buffer-Overflow.html |
title | MailEnable Authorization Header Buffer Overflow |
Saint
bid | 13350 |
description | MailEnable HTTPMail Authorization header buffer overflow |
id | mail_web_mailenable,mail_web_mailenableauthbo |
osvdb | 15737 |
title | mailenable_httpmail_authorization |
type | remote |