Mailenable Professional
Approved changes feed: RSS · Atom
cpe:2.3:a:mailenable:mailenable_professional:2.0:*:*:*:*:*:*:*
part: a version: 2.0 update: *
| Vendor | Mailenable (ac781917-bc09-5845-a37c-c45d67bfa524) |
|---|---|
| Product | Mailenable Professional (bdb29d49-6385-5ec9-ae52-712a313e23f1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2007-0652 |
vulnerable | 2026-06-08 04:49:32.987307 |
Details available
Cross-site request forgery (CSRF) vulnerability in MailEnable Professional before 2.37 allows remote attackers to modify arbitrary configurations and perform unauthorized actions as arbitrary users via a link or IMG tag.
Published: 2007-02-15T23:00:00.000Z
Updated: 2024-08-07T12:26:54.322Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-0651 |
vulnerable | 2026-06-08 04:49:32.983816 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in MailEnable Professional before 2.37 allow remote attackers to inject arbitrary Javascript script via (1) e-mail messages and (2) the ID parameter to (a) right.asp, (b) Forms/MAI/list.asp, and (c) Forms/VCF/list.asp in mewebmail/base/default/lang/EN/.
Published: 2007-02-15T23:00:00.000Z
Updated: 2024-08-07T12:26:54.317Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-6484 |
vulnerable | 2026-06-08 04:49:28.951342 |
Details available
The IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.34, Professional Edition 1.6 through 1.83, and Enterprise Edition 1.1 through 1.40 allows remote attackers to cause a denial of service (crash) via unspecified vectors that trigger a null pointer dereference, as addressed by the ME-10023 hotfix, and a different issue than CVE-2006-6423. NOTE: some details were obtained from third party information.
Published: 2006-12-12T20:00:00.000Z
Updated: 2024-08-07T20:26:46.583Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-6290 |
vulnerable | 2026-06-08 04:49:28.582566 |
Details available
Multiple stack-based buffer overflows in the IMAP module (MEIMAPS.EXE) in MailEnable Professional 1.6 through 1.82 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.30 and 2.0 through 2.33 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) EXAMINE or (2) SELECT command.
Published: 2006-12-05T11:00:00.000Z
Updated: 2024-08-07T20:19:35.175Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-5177 |
vulnerable | 2026-06-08 04:49:19.889956 |
Details available
The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.
Published: 2006-10-06T00:00:00.000Z
Updated: 2024-08-07T19:41:05.016Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-5176 |
vulnerable | 2026-06-08 04:49:19.889491 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.