Vulnerability Details CVE-2006-5176
Buffer overflow in NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to execute arbitrary code via "the signature field of NTLM Type 1 messages".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.127
EPSS Ranking 93.6%
CVSS Severity
CVSS v2 Score 9.3
References
- http://labs.musecurity.com/advisories/MU-200609-01.txt
- http://secunia.com/advisories/22179
- http://www.mailenable.com/hotfix/
- http://www.securityfocus.com/bid/20290
- http://www.vupen.com/english/advisories/2006/3862
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29284
- http://labs.musecurity.com/advisories/MU-200609-01.txt
- http://secunia.com/advisories/22179
- http://www.mailenable.com/hotfix/
- http://www.securityfocus.com/bid/20290
- http://www.vupen.com/english/advisories/2006/3862
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29284
Products affected by CVE-2006-5176
-
cpe:2.3:a:mailenable:mailenable_enterprise:2.0
-
cpe:2.3:a:mailenable:mailenable_professional:2.0