Vulnerabilities > CVE-2007-1301 - Remote Buffer Overflow vulnerability in MailEnable Append
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Stack-based buffer overflow in the IMAP service in MailEnable Enterprise and Professional Editions 2.37 and earlier allows remote authenticated users to execute arbitrary code via a long argument to the APPEND command. NOTE: this is probably different than CVE-2006-6423.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | MailEnable Pro/Ent <= 2.37 (APPEND) Remote Buffer Overflow Exploit. CVE-2007-1301. Remote exploit for windows platform |
| file | exploits/windows/remote/3397.pl |
| id | EDB-ID:3397 |
| last seen | 2016-01-31 |
| modified | 2007-03-02 |
| platform | windows |
| port | 143 |
| published | 2007-03-02 |
| reporter | mu-b |
| source | https://www.exploit-db.com/download/3397/ |
| title | MailEnable Pro/Ent <= 2.37 APPEND Remote Buffer Overflow Exploit |
| type | remote |
References
- http://secunia.com/advisories/24361
- http://www.mailenable.com/hotfix/
- http://www.securityfocus.com/bid/22792
- http://www.securitytracker.com/id?1017739
- http://www.vupen.com/english/advisories/2007/0811
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32801
- https://www.exploit-db.com/exploits/3397