Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2726

Description

HTTPMail service in MailEnable Professional 1.18 does not properly handle arguments to the Authorization header, which allows remote attackers to cause a denial of service (null dereference and application crash). NOTE: This is a different vulnerability than CVE-2005-1348.

Affected products

MailEnable/Mailenable
cpe:2.3:a:mailenable:mailenable:1.18:*:professional:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/11588nvdPatchVendor Advisory
archives.neohapsis.com/archives/bugtraq/2004-05/0159.htmlnvd
www.oliverkarow.de/research/MailWebHTTPAuthCrash.txtnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000