CVE-2005-2278

Mailenable Professional - Buffer Overflow

Title source: rule

Description

Stack-based buffer overflow in the IMAP daemon (imapd) in MailEnable Professional 1.54 allows remote authenticated users to execute arbitrary code via the status command with a long mailbox name.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16485

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/imap/mailenable_status.rb

View Code ZIP pw:eip

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=112127188609993&w=2

[Exploit, Patch, Vendor Advisory] http://www.coresecurity.com/common/showdoc.php?idx=467&idxseccion=10

Scores

EPSS 0.8544

EPSS Percentile 99.4%

Details

Status published

Products (1)

mailenable/mailenable_professional 1.54

Published Jul 18, 2005

Tracked Since Feb 18, 2026