Unrated severityNVD Advisory· Published Mar 10, 2008· Updated Apr 23, 2026
CVE-2008-1276
CVE-2008-1276
Description
Multiple buffer overflows in the IMAP service (MEIMAPS.EXE) in MailEnable Professional Edition and Enterprise Edition 3.13 and earlier allow remote authenticated attackers to execute arbitrary code via long arguments to the (1) FETCH, (2) EXAMINE, and (3) UNSUBSCRIBE commands.
Affected products
2- cpe:2.3:a:mailenable:mailenable_enterprise:*:*:*:*:*:*:*:*Range: <=3.13
- cpe:2.3:a:mailenable:mailenable_professional:*:*:*:*:*:*:*:*Range: <=3.13
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.securityfocus.com/bid/28145nvdExploit
- secunia.com/advisories/29277nvdVendor Advisory
- aluigi.altervista.org/adv/maildisable-adv.txtnvd
- securityreason.com/securityalert/3724nvd
- www.securityfocus.com/archive/1/489270/100/0/threadednvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/0799/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41058nvd
- www.exploit-db.com/exploits/5249nvd
News mentions
0No linked articles in our index yet.