CVE-2007-0955

MailEnable Professional <2.35 - DoS

Title source: llm

Description

The NTLM_UnPack_Type3 function in MENTLM.dll in MailEnable Professional 2.35 and earlier allows remote attackers to cause a denial of service (application crash) via certain base64-encoded data following an AUTHENTICATE NTLM command to the imap port (143/tcp), which results in an out-of-bounds read.

Exploits (2)

exploitdb WORKING POC VERIFIED

by mu-b · perldoswindows

https://www.exploit-db.com/exploits/3308

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by mu-b · perldoswindows

https://www.exploit-db.com/exploits/3306

View Code ZIP pw:eip

References (8)

[Broken Link] http://osvdb.org/33195

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/0614

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2007-02/0321.html

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2007-02/0333.html

[Third Party Advisory] http://secunia.com/advisories/24139

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32482

[Third Party Advisory] http://securityreason.com/securityalert/2249

[Third Party Advisory] http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052427.html

Scores

EPSS 0.1459

EPSS Percentile 94.5%

Details

Status published

Products (1)

mailenable/mailenable < 2.35

Published Feb 15, 2007

Tracked Since Feb 18, 2026