CVE-2006-5177
CVE-2006-5177
The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28735unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://labs.musecurity.com/advisories/MU-200609-01.txthttp://secunia.com/advisories/22179https://exchange.xforce.ibmcloud.com/vulnerabilities/29286https://exchange.xforce.ibmcloud.com/vulnerabilities/29287http://www.mailenable.com/hotfix/http://www.securityfocus.com/bid/20290http://www.vupen.com/english/advisories/2006/3862