Lucene search

MitreCVE-2017-15223

HistoryOct 24, 2017 - 5:29 p.m.

CVE-2017-15223

2017-10-2417:29:00

CWE-835

mitre

web.nvd.nist.gov

cve-2017-15223

argosoft mini mail server

dos vulnerability

remote attack

cpu resources

memory consumption

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

5.3

Confidence

High

EPSS

0.021

Percentile

89.1%

JSON

Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote attackers to waste CPU resources (memory consumption) via unspecified vectors, possibly triggering an infinite loop.

Affected configurations

Nvd

Node

argosoftmini_mail_serverRange≤1.0.0.2

VendorProductVersionCPE
argosoftmini_mail_server*cpe:2.3:a:argosoft:mini_mail_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
argosoft	mini_mail_server	*	cpe:2.3:a:argosoft:mini_mail_server::::::::

References

www.exploit-db.com/exploits/43026/

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

5.3

Confidence

High

EPSS

0.021

Percentile

89.1%

JSON

Related for CVE-2017-15223