MailEnable 1.1/1.7 - IMAP Rename Request Remote Denial of Service
| EKU-ID: 31885 | CVE: CVE-2005-3813;OSVDB-21109 | OSVDB-ID: |
| Author: Josh Zlatin-Amishav | Published: 2005-11-23 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 31885 | CVE: CVE-2005-3813;OSVDB-21109 | OSVDB-ID: |
| Author: Josh Zlatin-Amishav | Published: 2005-11-23 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/15556/info MailEnable is prone to a remote denial of service vulnerability. The vulnerability presents itself when a user issues a malicious rename request following authentication. Remote attackers can exploit this issue to trigger a denial of service condition. telnet localhost 143 a1 login josh byebye a2 rename foo bar where josh and byebye are the login credentials for an existing mailbox.