CVE-2006-6997

MailEnable Standard < 1.93, Professional < 1.73, Enterprise < 1.21 - Improper Authentication

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 leads to "weakened authentication security" with unknown impact and attack vectors. NOTE: due to lack of details, it is not clear whether this is the same as CVE-2006-1792.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://www.mailenable.com/professionalhistory.asp
Vendor Advisory x_refsource_confirm
http://www.mailenable.com/enterprisehistory.asp
Vendor Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1359.html
Vendor Advisory x_refsource_confirm
http://www.mailenable.com/standardhistory.asp

Scores

EPSS 0.0625
EPSS Percentile 92.7%

Details

CWE
CWE-287
Status published
Products (14)
mailenable/mailenable_enterprise 1.0
mailenable/mailenable_enterprise 1.00
mailenable/mailenable_enterprise 1.1
mailenable/mailenable_enterprise 1.01
mailenable/mailenable_enterprise 1.02
mailenable/mailenable_enterprise 1.2
mailenable/mailenable_enterprise 1.03
mailenable/mailenable_enterprise 1.04
mailenable/mailenable_standard 1.71
mailenable/mailenable_standard 1.72
... and 4 more
Published Feb 12, 2007
Tracked Since Feb 18, 2026