Unrated severityNVD Advisory· Published Oct 10, 2006· Updated Apr 23, 2026
CVE-2006-5177
CVE-2006-5177
Description
The NTLM authentication in MailEnable Professional 2.0 and Enterprise 2.0 allows remote attackers to (1) execute arbitrary code via unspecified vectors involving crafted base64 encoded NTLM Type 3 messages, or (2) cause a denial of service via crafted base64 encoded NTLM Type 1 messages, which trigger a buffer over-read.
Affected products
2- cpe:2.3:a:mailenable:mailenable_enterprise:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:mailenable:mailenable_professional:2.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- labs.musecurity.com/advisories/MU-200609-01.txtnvdPatchVendor Advisory
- secunia.com/advisories/22179nvdPatchVendor Advisory
- www.mailenable.com/hotfix/nvdPatch
- www.securityfocus.com/bid/20290nvd
- www.vupen.com/english/advisories/2006/3862nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/29286nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/29287nvd
News mentions
0No linked articles in our index yet.