CVE-2005-3813

MailEnable Professional 1.7 and Enterprise 1.1 - Authenticated Denial of Service via IMAP RENAME Command

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3813. PoCs published by Josh Zlatin-Amishav.

AI-analyzed exploit summary This exploit demonstrates a denial of service vulnerability in MailEnable by sending a malicious rename request after authentication. The PoC uses a simple telnet session to trigger the DoS condition.

Description

IMAP service (meimaps.exe) of MailEnable Professional 1.7 and Enterprise 1.1 allows remote authenticated attackers to cause a denial of service (application crash) by using RENAME with a non-existent mailbox, a different vulnerability than CVE-2005-3690.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Josh Zlatin-Amishav · textdoswindows

https://www.exploit-db.com/exploits/26575

View Code ZIP pw:eip

This exploit demonstrates a denial of service vulnerability in MailEnable by sending a malicious rename request after authentication. The PoC uses a simple telnet session to trigger the DoS condition.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: MailEnable (version not specified)

Auth required

Prerequisites: Valid credentials for an existing mailbox · Access to the IMAP service (port 143)

MITRE ATT&CK