Vulnerabilities > CVE-2006-0538 - Remote Denial Of Service vulnerability in CipherTrust IronMail

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

high complexity

ciphertrust

NVD

Published: 2006-02-04

Updated: 2018-10-19

Summary

CipherTrust IronMail 5.0.1, when "Denial of Service Protection" is enabled, allows remote attackers to cause a denial of service (possibly CPU consumption) via a SYN flood with malformed TCP packets from multiple connections.

Vulnerable Configurations

Part	Description	Count
Application	Ciphertrust Ciphertrust Ironmail - Ciphertrust Ironmail 4.1 Ciphertrust Ironmail 4.5.1 Ciphertrust Ironmail 4.5.2 Ciphertrust Ironmail 5.0.1	5

References

http://securityreason.com/securityalert/407
http://securitytracker.com/id?1015555
http://www.securityfocus.com/archive/1/423898/100/0/threaded
http://www.securityfocus.com/bid/16465
https://exchange.xforce.ibmcloud.com/vulnerabilities/24445