Vulnerabilities > CVE-2006-2646 - Remote Pre-Authentication IMAP Buffer Overflow vulnerability in Alt-N MDaemon

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

alt-n

exploit available

NVD

Published: 2006-05-30

Updated: 2016-10-18

Summary

Buffer overflow in Alt-N MDaemon, possibly 9.0.1 and earlier, allows remote attackers to execute arbitrary code via a long A0001 argument that begins with a '"' (double quote).

Vulnerable Configurations

Part	Description	Count
Application	Alt-N ALT N Mdaemon 2.8 ALT N Mdaemon 2.8.5.0 ALT N Mdaemon 3.0.3 ALT N Mdaemon 3.0.4 ALT N Mdaemon 3.1.1 ALT N Mdaemon 3.1.2 ALT N Mdaemon 3.1_Beta ALT N Mdaemon 3.5.0 ALT N Mdaemon 3.5.1 ALT N Mdaemon 3.5.4 ALT N Mdaemon 3.5.6 ALT N Mdaemon 5.0 ALT N Mdaemon 5.0.1 ALT N Mdaemon 5.0.2 ALT N Mdaemon 5.0.3 ALT N Mdaemon 5.0.4 ALT N Mdaemon 5.0.5 ALT N Mdaemon 5.0.6 ALT N Mdaemon 5.0.7 ALT N Mdaemon 6.0 ALT N Mdaemon 6.0.5 ALT N Mdaemon 6.0.6 ALT N Mdaemon 6.0.7 ALT N Mdaemon 6.5.0 ALT N Mdaemon 6.5.1 ALT N Mdaemon 6.5.2 ALT N Mdaemon 6.7.5 ALT N Mdaemon 6.7.9 ALT N Mdaemon 6.8.0 ALT N Mdaemon 6.8.1 ALT N Mdaemon 6.8.2 ALT N Mdaemon 6.8.3 ALT N Mdaemon 6.8.4 ALT N Mdaemon 6.8.5 ALT N Mdaemon 7.2 ALT N Mdaemon 8.1.1 ALT N Mdaemon 8.1.3 ALT N Mdaemon 8.1.4 ALT N Mdaemon 9.0.1	42

Exploit-Db

description	Alt-N MDaemon 2-8 Remote Pre-Authentication IMAP Buffer Overflow Vulnerability. CVE-2006-2646 . Dos exploit for windows platform
id	EDB-ID:27914
last seen	2016-02-03
modified	2006-05-29
published	2006-05-29
reporter	kcope
source	https://www.exploit-db.com/download/27914/
title	Alt-N MDaemon 2-8 - Remote Pre-Authentication IMAP Buffer Overflow Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References