CVE-2006-6997

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 leads to "weakened authentication security" with unknown impact and attack vectors. NOTE: due to lack of details, it is not clear whether this is the same as CVE-2006-1792.

Published : 2007-02-12 11:28 Updated : 2008-09-05 21:16

10.0
CVSS Score More info
Score 10.0 / 10
10.0
Vendor Product Version URI
Mailenable Mailenable Enterprise 1.1 cpe:/a:mailenable:mailenable_enterprise:1.1
Mailenable Mailenable Enterprise 1.0 cpe:/a:mailenable:mailenable_enterprise:1.0
Mailenable Mailenable Enterprise 1.2 cpe:/a:mailenable:mailenable_enterprise:1.2
Mailenable Mailenable Enterprise 1.00 cpe:/a:mailenable:mailenable_enterprise:1.00
Mailenable Mailenable Enterprise 1.01 cpe:/a:mailenable:mailenable_enterprise:1.01
Mailenable Mailenable Enterprise 1.02 cpe:/a:mailenable:mailenable_enterprise:1.02
Mailenable Mailenable Enterprise 1.03 cpe:/a:mailenable:mailenable_enterprise:1.03
Mailenable Mailenable Enterprise 1.04 cpe:/a:mailenable:mailenable_enterprise:1.04
Mailenable Mailenable Standard 1.702 cpe:/a:mailenable:mailenable_standard:1.702
Mailenable Mailenable Standard 1.701 cpe:/a:mailenable:mailenable_standard:1.701
Mailenable Mailenable Standard 1.704 cpe:/a:mailenable:mailenable_standard:1.704
Mailenable Mailenable Standard 1.703 cpe:/a:mailenable:mailenable_standard:1.703
Mailenable Mailenable Standard 1.71 cpe:/a:mailenable:mailenable_standard:1.71
Mailenable Mailenable Standard 1.72 cpe:/a:mailenable:mailenable_standard:1.72
  1. Mailenable (2) Search CVE
    1. Mailenable Enterprise (8) Search CVE
      1. 1.1
      2. 1.0
      3. 1.2
      4. 1.00
      5. 1.01
      6. 1.02
      7. 1.03
      8. 1.04
    2. Mailenable Standard (6) Search CVE
      1. 1.702
      2. 1.701
      3. 1.704
      4. 1.703
      5. 1.71
      6. 1.72

CWE

ID Name Description Links
CWE-287 Improper Authentication When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. CVE

History of changes

Date Event
2007-02-12 11:28

New CVE