Vulnerabilities > Mailenable > Mailenable Enterprise > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-12-12 | CVE-2006-6484 | Remote Denial of Service vulnerability in MailEnable IMAP Service The IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.34, Professional Edition 1.6 through 1.83, and Enterprise Edition 1.1 through 1.40 allows remote attackers to cause a denial of service (crash) via unspecified vectors that trigger a null pointer dereference, as addressed by the ME-10023 hotfix, and a different issue than CVE-2006-6423. | 5.0 |
| 2006-12-05 | CVE-2006-6290 | Buffer Overflow vulnerability in MailEnable IMAP Service Multiple stack-based buffer overflows in the IMAP module (MEIMAPS.EXE) in MailEnable Professional 1.6 through 1.82 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.30 and 2.0 through 2.33 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) EXAMINE or (2) SELECT command. | 6.5 |
| 2006-09-07 | CVE-2006-4616 | Remote Denial of Service vulnerability in Mailenable products SMTP service in MailEnable Standard, Professional, and Enterprise before ME-10014 (20060904) allows remote attackers to cause a denial of service via an SPF lookup for a domain with a large number of records, which triggers a null pointer exception. | 5.0 |
| 2006-06-28 | CVE-2006-3277 | Resource Management Errors vulnerability in Mailenable Enterprise and Mailenable Professional The SMTP service of MailEnable Standard 1.92 and earlier, Professional 2.0 and earlier, and Enterprise 2.0 and earlier before the MESMTPC hotfix, allows remote attackers to cause a denial of service (application crash) via a HELO command with a null byte in the argument, possibly triggering a length inconsistency or a missing argument. | 5.0 |
| 2006-03-21 | CVE-2006-1338 | Resource Management Errors vulnerability in Mailenable Enterprise and Mailenable Professional Webmail in MailEnable Professional Edition before 1.73 and Enterprise Edition before 1.21 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors involving "incorrectly encoded quoted-printable emails". | 5.0 |
| 2006-02-01 | CVE-2006-0504 | Unspecified vulnerability in Mailenable Enterprise Unspecified vulnerability in MailEnable Enterprise Edition before 1.2 allows remote attackers to cause a denial of service (CPU utilization) by viewing "formatted quoted-printable emails" via webmail. | 5.0 |
| 2005-12-20 | CVE-2005-4402 | Remote Security vulnerability in MailEnable Enterprise Buffer overflow in MailEnable Professional 1.71 and earlier, and Enterprise 1.1 and earlier, allows remote authenticated users to execute arbitrary code via a long IMAP EXAMINE command. | 6.5 |
| 2005-11-26 | CVE-2005-3813 | Remote Denial of Service vulnerability in MailEnable IMAP Rename Request IMAP service (meimaps.exe) of MailEnable Professional 1.7 and Enterprise 1.1 allows remote authenticated attackers to cause a denial of service (application crash) by using RENAME with a non-existent mailbox, a different vulnerability than CVE-2005-3690. | 4.0 |
| 2005-11-19 | CVE-2005-3691 | Directory Traversal vulnerability in MailEnable IMAP Command Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the (1) create or (2) rename commands. | 5.0 |
| 2005-05-31 | CVE-2005-1781 | Denial-Of-Service vulnerability in MailEnable Professional Unknown vulnerability in SMTP authentication for MailEnable allows remote attackers to cause a denial of service (crash). | 5.0 |