[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-6101

Date: (C)2007-11-23   (M)2017-08-01 


Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.

CVSS Score: 4.0Access Vector: NETWORK
Exploit Score: 8.0Access Complexity: LOW
Impact Score: 2.9Authentication: SINGLE_INSTANCE
 Confidentiality: NONE
 Integrity: NONE
 Availability: PARTIAL





Reference:
BID-26514
SECUNIA-27736
OSVDB-42399
OSVDB-42400
ability-blank-string-dos(38586)
ability-imap4-dos(38587)
http://www.code-crafters.com/abilitymailserver/updatelog.html

CWE    1
CWE-20

© 2013 SecPod Technologies