Unrated severityNVD Advisory· Published Dec 27, 2006· Updated Jun 16, 2026
CVE-2006-6424
CVE-2006-6424
Description
Multiple buffer overflows in Novell NetMail before 3.52e FTF2 allow remote attackers to execute arbitrary code (1) by appending literals to certain IMAP verbs when specifying command continuation requests to IMAPD, resulting in a heap overflow; and (2) via crafted arguments to the STOR command to the Network Messaging Application Protocol (NMAP) daemon, resulting in a stack overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
17cpe:2.3:a:novell:netmail:3.0.1:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:novell:netmail:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.0.3a:a:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.0.3a:b:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:a:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:b:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:c:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:d:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:e:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:f:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:g:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.10:h:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.1:f:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:*:e-ftfl:*:*:*:*:*:*range: <=3.5.2
- (no CPE)range: < 3.52e FTF2
Patches
Vulnerability mechanics
References
14- secunia.com/advisories/23437nvdPatchVendor Advisory
- securitytracker.com/idnvdPatch
- www.cirt.dk/advisories/cirt-48-advisory.txtnvdPatchVendor Advisory
- www.zerodayinitiative.com/advisories/ZDI-06-052.htmlnvdPatchVendor Advisory
- www.zerodayinitiative.com/advisories/ZDI-06-053.htmlnvdPatchVendor Advisory
- secure-support.novell.com/KanisaPlatform/Publishing/134/3096026_f.SAL_Public.htmlnvdPatch
- www.kb.cert.org/vuls/id/381161nvdUS Government Resource
- www.kb.cert.org/vuls/id/912505nvdUS Government Resource
- securityreason.com/securityalert/2081nvd
- www.securityfocus.com/archive/1/455201/100/0/threadednvd
- www.securityfocus.com/archive/1/455202/100/0/threadednvd
- www.securityfocus.com/bid/21724nvd
- www.securityfocus.com/bid/21725nvd
- www.vupen.com/english/advisories/2006/5134nvd
News mentions
0No linked articles in our index yet.