Lucene search

[email protected]CVE-2007-1029

HistoryFeb 21, 2007 - 11:28 a.m.

CVE-2007-1029

2007-02-2111:28:00

[email protected]

web.nvd.nist.gov

cve-2007-1029

quiksoft easymail objects

buffer overflow

imap4

security vulnerability

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.177 Low

EPSS

Percentile

96.2%

JSON

Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6.5 allows remote attackers to execute arbitrary code via a long host name.

Affected configurations

NVD

Node

quicksofteasymail_objectsRange≤6.4

CPENameOperatorVersion
quicksoft:easymail_objectsquicksoft easymail objectsle6.4

CPE	Name	Operator	Version
quicksoft:easymail_objects	quicksoft easymail objects	le	6.4

References

secunia.com/advisories/24199

security-assessment.com/files/advisories/easymail_advisory.pdf

securityreason.com/securityalert/2277

www.osvdb.org/33208

www.securityfocus.com/archive/1/460237/100/0/threaded

www.securityfocus.com/bid/22583

www.vupen.com/english/advisories/2007/0634

exchange.xforce.ibmcloud.com/vulnerabilities/32540

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.177 Low

EPSS

Percentile

96.2%

JSON

Related for CVE-2007-1029

securityvulns1 prion2 nvd2 kaspersky1 cvelist2 nessus1 cve1