virus logo Intrusion Prevention

IMAP.LOGIN.Large.Memory.DoS

description-logoDescription

This indicates an attack attempt against a denial-of-service vulnerability in Kerio MailServer.
The vulnerability is caused by the application's inability to properly handle malformed arguments to the IMAP LOGIN command. It may allow a remote attacker to cause the server to crash and result in a denial-of-service condition.

affected-products-logoAffected Products

Kerio Mailserver 6.1.3
Kerio Mailserver 6.0.10
Kerio Mailserver 6.0.9
Kerio Mailserver 6.0.5
Kerio Mailserver 6.0.4
Kerio Mailserver 6.0.3
Kerio Mailserver 6.0.2
Kerio Mailserver 6.0.1
Kerio Mailserver 6.0
Kerio Mailserver 5.7.10
Kerio Mailserver 5.7.9
Kerio Mailserver 5.7.8
Kerio Mailserver 5.7.7
Kerio Mailserver 5.7.6
Kerio Mailserver 5.7.5
Kerio Mailserver 5.7.4
Kerio Mailserver 5.7.3
Kerio Mailserver 5.7.2
Kerio Mailserver 5.7.1
Kerio Mailserver 5.7 .0
Kerio Mailserver 5.6.5
Kerio Mailserver 5.6.4
Kerio Mailserver 5.6.3
Kerio Mailserver 5.1.1
Kerio Mailserver 5.1

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version of Kerio MailServer (6.1.3 Patch 1 or later):

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 13345
Created Oct 18, 2006
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2007-0221 CVE-2005-1758 CVE-2006-1158
Exploit Prediction Score 20.09%
Default Action drop
Active
Affected OS Windows
Affected App Other