F-Secure
Tools
MailEnable IMAP Denial of Service Vulnerability
| Report ID: | SA31325 |
| Source: | Secunia |
| Date of Discovery: | 01.08.2008 |
| Criticality: | Low |
| Affects: | MailEnable Enterprise Edition 3.x MailEnable Professional 3.x |
| Compromise From: | From remote |
| Compromise Type: | DoS |
Summary
A vulnerability has been reported in MailEnable, which can be exploited by malicious users to cause a DoS (Denial of Service).
Detailed Description
A vulnerability has been reported in MailEnable, which can be exploited by malicious users to cause a DoS (Denial of Service).
The vulnerability is caused due to an error when handling multiple IMAP connections to the same folders and can be exploited to potentially cause a crash.
The vulnerability is reported in version 3.52 Professional Edition and version 3.52 Enterprise Edition.
The vulnerability is caused due to an error when handling multiple IMAP connections to the same folders and can be exploited to potentially cause a crash.
The vulnerability is reported in version 3.52 Professional Edition and version 3.52 Enterprise Edition.
Solution
Apply hotfix (ME-10042).
http://www.mailenable.com/hotfix/ME-10042.EXE
http://www.mailenable.com/hotfix/ME-10042.EXE