CVE-2006-6425

Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via unspecified vectors involving the APPEND command.

Published: Dec 27, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-6425
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
novell / netmail	3.1	3.1.x
novell / netmail	3.10-f	3.10-f.x
novell / netmail	3.0.1	3.0.1.x
novell / netmail	3.10-g	3.10-g.x
novell / netmail	3.10-e	3.10-e.x
novell / netmail	-	3.5.2.x
novell / netmail	3.10-h	3.10-h.x
novell / netmail	3.10-b	3.10-b.x
novell / netmail	3.0.3a-a	3.0.3a-a.x
novell / netmail	3.0.3a-b	3.0.3a-b.x
novell / netmail	3.1-f	3.1-f.x
novell / netmail	3.10	3.10.x
novell / netmail	3.10-c	3.10-c.x
novell / netmail	3.10-a	3.10-a.x
novell / netmail	3.5	3.5.x
novell / netmail	3.10-d	3.10-d.x

http://secunia.com/advisories/23437
http://securityreason.com/securityalert/2080
http://securitytracker.com/id?1017437
http://www.kb.cert.org/vuls/id/258753
http://www.securityfocus.com/archive/1/455200/100/0/threaded
http://www.securityfocus.com/bid/21723
http://www.vupen.com/english/advisories/2006/5134
http://www.zerodayinitiative.com/advisories/ZDI-06-054.html
https://secure-support.novell.com/KanisaPlatform/Publishing/134/3096026_f.SAL_Public.html

Vulnerability Database

CVE-2006-6425