| ID |
CVE-2007-1350
|
| Summary |
Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:novell:netmail:3.5.2:a:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:a:*:*:*:*:*:*
-
cpe:2.3:a:novell:netmail:3.5.2:b:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:b:*:*:*:*:*:*
-
cpe:2.3:a:novell:netmail:3.5.2:c:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:c:*:*:*:*:*:*
-
cpe:2.3:a:novell:netmail:3.5.2:c1:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:c1:*:*:*:*:*:*
-
cpe:2.3:a:novell:netmail:3.5.2:d:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:d:*:*:*:*:*:*
-
cpe:2.3:a:novell:netmail:3.5.2:e-ftfl:*:*:*:*:*:*
cpe:2.3:a:novell:netmail:3.5.2:e-ftfl:*:*:*:*:*:*
|
| CVSS |
| Base: | 6.8 (as of 16-10-2018 - 16:38) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
|
| saint
via4
|
| bid | 22857 | | description | NetMail WebAdmin username buffer overflow | | id | web_tool_netmailwebadminbo | | osvdb | 33886 | | title | netmail_webadmin_username | | type | remote |
|
| Last major update |
16-10-2018 - 16:38 |
| Published |
08-03-2007 - 22:19 |
| Last modified |
16-10-2018 - 16:38 |
