CVE-2006-0559

critical

Trellix

CVSS v3 Base Score

10.0

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

19.5%

Exploitation probability in 30 days

Top 5% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: April 4, 2006 (7345 days ago)

Last Modified: April 16, 2026

Vendor: Trellix

Source: NVD

Description

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed.

CWE

NVD-CWE-Other

Affected Products

mcafee webshield smtp

References

🔗 secunia.com 🔗 securityreason.com 🔗 securitytracker.com 🔗 www.osvdb.org 🔗 www.securityfocus.com

CVE-2006-0559

Vulnerability Report

Description

CWE

Affected Products

References