Intrusion Prevention

MailEnable.IMAP.Login.Buffer.Overflow

Description

This indicates an attack attempt against a stack-based buffer-overflow vulnerability in the IMAP service for MailEnable.
The vulnerability is caused by the software's inability to properly check the bounds of user-supplied input. Remote attackers may exploit this to execute arbitrary code.

Affected Products

MailEnable Professional and Enterprise Edition 2.0 through 2.35
Professional Edition 1.6 through 1.84
Enterprise Edition 1.1 through 1.41

Impact

System compromise

Recommended Actions

Apply hotfix ME-10025:
http://www.mailenable.com/hotfix/ME-10025.EXE

CVE References

CVE-2006-6423