Multiple stack-based buffer overflows in the IMAP module (MEIMAPS.EXE) in MailEnable Professional 1.6 through 1.82 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.30 and 2.0 through 2.33 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) EXAMINE or (2) SELECT command.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mailenable_enterprise | Mailenable | 1.1 (including) | 1.1 (including) |
| Mailenable_enterprise | Mailenable | 1.2 (including) | 1.2 (including) |
| Mailenable_enterprise | Mailenable | 1.11 (including) | 1.11 (including) |
| Mailenable_enterprise | Mailenable | 1.12 (including) | 1.12 (including) |
| Mailenable_enterprise | Mailenable | 1.13 (including) | 1.13 (including) |
| Mailenable_enterprise | Mailenable | 1.14 (including) | 1.14 (including) |
| Mailenable_enterprise | Mailenable | 1.15 (including) | 1.15 (including) |
| Mailenable_enterprise | Mailenable | 1.16 (including) | 1.16 (including) |
| Mailenable_enterprise | Mailenable | 1.17 (including) | 1.17 (including) |
| Mailenable_enterprise | Mailenable | 1.18 (including) | 1.18 (including) |
| Mailenable_enterprise | Mailenable | 1.19 (including) | 1.19 (including) |
| Mailenable_enterprise | Mailenable | 1.21 (including) | 1.21 (including) |
| Mailenable_enterprise | Mailenable | 1.22 (including) | 1.22 (including) |
| Mailenable_enterprise | Mailenable | 1.23 (including) | 1.23 (including) |
| Mailenable_enterprise | Mailenable | 1.24 (including) | 1.24 (including) |
| Mailenable_enterprise | Mailenable | 1.25 (including) | 1.25 (including) |
| Mailenable_enterprise | Mailenable | 1.26 (including) | 1.26 (including) |
| Mailenable_enterprise | Mailenable | 1.27 (including) | 1.27 (including) |
| Mailenable_enterprise | Mailenable | 1.28 (including) | 1.28 (including) |
| Mailenable_enterprise | Mailenable | 1.29 (including) | 1.29 (including) |
| Mailenable_enterprise | Mailenable | 1.30 (including) | 1.30 (including) |
| Mailenable_enterprise | Mailenable | 2.0 (including) | 2.0 (including) |
| Mailenable_enterprise | Mailenable | 2.1 (including) | 2.1 (including) |
| Mailenable_enterprise | Mailenable | 2.01 (including) | 2.01 (including) |
| Mailenable_enterprise | Mailenable | 2.2 (including) | 2.2 (including) |
| Mailenable_enterprise | Mailenable | 2.03 (including) | 2.03 (including) |
| Mailenable_enterprise | Mailenable | 2.04 (including) | 2.04 (including) |
| Mailenable_enterprise | Mailenable | 2.05 (including) | 2.05 (including) |
| Mailenable_enterprise | Mailenable | 2.06 (including) | 2.06 (including) |
| Mailenable_enterprise | Mailenable | 2.07 (including) | 2.07 (including) |
| Mailenable_enterprise | Mailenable | 2.08 (including) | 2.08 (including) |
| Mailenable_enterprise | Mailenable | 2.09 (including) | 2.09 (including) |
| Mailenable_enterprise | Mailenable | 2.11 (including) | 2.11 (including) |
| Mailenable_enterprise | Mailenable | 2.12 (including) | 2.12 (including) |
| Mailenable_enterprise | Mailenable | 2.13 (including) | 2.13 (including) |
| Mailenable_enterprise | Mailenable | 2.14 (including) | 2.14 (including) |
| Mailenable_enterprise | Mailenable | 2.15 (including) | 2.15 (including) |
| Mailenable_enterprise | Mailenable | 2.16 (including) | 2.16 (including) |
| Mailenable_enterprise | Mailenable | 2.17 (including) | 2.17 (including) |
| Mailenable_enterprise | Mailenable | 2.18 (including) | 2.18 (including) |
| Mailenable_enterprise | Mailenable | 2.19 (including) | 2.19 (including) |
| Mailenable_enterprise | Mailenable | 2.21 (including) | 2.21 (including) |
| Mailenable_enterprise | Mailenable | 2.22 (including) | 2.22 (including) |
| Mailenable_enterprise | Mailenable | 2.23 (including) | 2.23 (including) |
| Mailenable_enterprise | Mailenable | 2.24 (including) | 2.24 (including) |
| Mailenable_enterprise | Mailenable | 2.25 (including) | 2.25 (including) |
| Mailenable_enterprise | Mailenable | 2.26 (including) | 2.26 (including) |
| Mailenable_enterprise | Mailenable | 2.27 (including) | 2.27 (including) |
| Mailenable_enterprise | Mailenable | 2.28 (including) | 2.28 (including) |
| Mailenable_enterprise | Mailenable | 2.29 (including) | 2.29 (including) |
| Mailenable_enterprise | Mailenable | 2.30 (including) | 2.30 (including) |
| Mailenable_enterprise | Mailenable | 2.31 (including) | 2.31 (including) |
| Mailenable_enterprise | Mailenable | 2.32 (including) | 2.32 (including) |
| Mailenable_enterprise | Mailenable | 2.33 (including) | 2.33 (including) |
| Mailenable_professional | Mailenable | 1.6 (including) | 1.6 (including) |
| Mailenable_professional | Mailenable | 1.82 (including) | 1.82 (including) |
| Mailenable_professional | Mailenable | 2.0 (including) | 2.0 (including) |
| Mailenable_professional | Mailenable | 2.33 (including) | 2.33 (including) |
References
- http://secunia.com/advisories/23047
- http://secunia.com/advisories/23080
- http://secunia.com/secunia_research/2006-71/advisory/
- http://securitytracker.com/id?1017276
- http://securitytracker.com/id?1017319
- http://www.mailenable.com/hotfix/
- http://www.securityfocus.com/archive/1/453118/100/100/threaded
- http://www.securityfocus.com/bid/21362
- http://www.vupen.com/english/advisories/2006/4673
- http://www.vupen.com/english/advisories/2006/4778
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30614
- http://secunia.com/advisories/23047
- http://secunia.com/advisories/23080
- http://secunia.com/secunia_research/2006-71/advisory/
- http://securitytracker.com/id?1017276
- http://securitytracker.com/id?1017319
- http://www.mailenable.com/hotfix/
- http://www.securityfocus.com/archive/1/453118/100/100/threaded
- http://www.securityfocus.com/bid/21362
- http://www.vupen.com/english/advisories/2006/4673
- http://www.vupen.com/english/advisories/2006/4778
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30614