CVE-2006-4364
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-4364
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple heap-based buffer overflows in the POP3 server in Alt-N Technologies MDaemon before 9.0.6 allow remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via long strings that contain '@' characters in the (1) USER and (2) APOP commands.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
MDaemon POP3服务器USER和APOP命令缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Alt-N MDaemon是一款基于Windows的邮件服务程序。 MDaemon POP3服务器在处理USER和APOP命令时存在缓冲区溢出漏洞。如果向USER或APOP命令发送了包含有"@"字符的超长字符串的话,就会触发这个漏洞,导致堆溢出。如果要利用这个漏洞,必须向POP3服务器发送多个USER命令。成功利用这个漏洞的攻击者可能会执行任意代码,具体取决于堆的状态及字符串的长度。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-4364
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-4364
请登录查看更多情报信息。
- http://files.altn.com/MDaemon/Release/RelNotes_en.txtx_refsource_CONFIRM
- http://www.infigo.hr/en/in_focus/advisories/INFIGO-2006-08-04x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2006-4364
Same Patch Batch · n/a · 2006-08-25 · 17 CVEs total
| CVE-2006-4354 | Empire CMS 'Checklevel.PHP'远程文件包含漏洞 | |
| CVE-2006-4355 | Drupal Easylinks模块不明跨站脚本攻击漏洞 | |
| CVE-2006-4356 | Drupal Easylinks模块不明SQL注入漏洞 | |
| CVE-2006-4357 | DieselScripts Smart Traffic 'Index.PHP'远程文件包含漏洞 | |
| CVE-2006-4358 | DieselScripts DieselPay 'Index.PHP'跨站脚本攻击漏洞 | |
| CVE-2006-4359 | Trident Software PowerZip ZIP归档操作缓冲区溢出漏洞 | |
| CVE-2006-4360 | Drupal E-commerce模块未明跨站脚本攻击漏洞 | |
| CVE-2006-4361 | Diesel Job Site 'forgot.php'多个跨站脚本攻击(XSS)漏洞 | |
| CVE-2006-4362 | DieselScripts Diesel Paid Mail 'Getad.PHP'跨站脚本攻击漏洞 | |
| CVE-2006-4363 | Mambo CropImage组件 'admin.cropcanvas.php'mosConfig_absolute_path参数远程文件包含漏洞 | |
| CVE-2006-4352 | Cisco 11000系列内容服务交换机 ArrowPoint cookie功能敏感信息泄露漏洞 | |
| CVE-2006-4353 | Sun Java System Content Delivery Server信息泄露漏洞 | |
| CVE-2006-2112 | Fuji Xerox Printing System FTP跳转攻击漏洞 | |
| CVE-2006-2113 | Fuji Xerox Printing Systems嵌入式HTTP服务器多个漏洞 | |
| CVE-2006-3743 | ImageMagick XCF图像文件远程多个不明缓冲区溢出漏洞 | |
| CVE-2006-3744 | ImageMagick Sun Bitmap图像文件远程不明缓冲区溢出漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2006-4364
No comments yet