MailEnable < 10.54 DLL Hijacking via Unsafe Loading of MEAINFY.DLL

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAINFY.DLL from its application directo without sufficient integrity validation or secure search order. If the DLL is missing or attacker-writable locations in the search path are used, a local attacker with write permissions to the directory can plant a malicious MEAINFY.DLL. When the executable is launched, it loads the attacker-controlled library and executes code with the privileges of the process, enabling local privilege escalation when run with elevated rights.

AI Analysis

MailEnable contains an unsafe DLL loading vulnerability that can lead to local arbitrary code execution

Basic Information

ID CVE-2025-34396

Source VulnCheck

Published Dec 9, 2025 at 18:11

Modified Dec 9, 2025 at 19:27

Affected Product

Vendor MailEnable

Product MailEnable

Affected Versions MailEnable MailEnable 0

CWE Classification

CWE-427

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor MailEnable

Product MailEnable

Version < 10.54

References

{
    "lastseen": "",
    "description": "MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAINFY.DLL from its application directo without sufficient integrity validation or secure search order. If the DLL is missing or attacker-writable locations in the search path are used, a local attacker with write permissions to the directory can plant a malicious MEAINFY.DLL. When the executable is launched, it loads the attacker-controlled library and executes code with the privileges of the process, enabling local privilege escalation when run with elevated rights.",
    "published": "2025-12-09T18:11:04.148Z",
    "modified": "2025-12-09T19:27:49.401Z",
    "type": "cve",
    "title": "MailEnable < 10.54 DLL Hijacking via Unsafe Loading of MEAINFY.DLL",
    "source": "VulnCheck",
    "references": "https://mailenable.com/Standard-ReleaseNotes.txt\nhttps://www.mailenable.com/\nhttps://www.vulncheck.com/advisories/mailenable-dll-hijacking-via-unsafe-loading-of-meainfy-dll",
    "id": "CVE-2025-34396",
    "bulletinFamily": "",
    "cwe": [
        "CWE-427"
    ],
    "cvelist": null,
    "sourceData": "MailEnable MailEnable 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MailEnable",
    "version": "0",
    "vendor": "MailEnable",
    "ai_description": "MailEnable contains an unsafe DLL loading vulnerability that can lead to local arbitrary code execution",
    "ai_severity": "High",
    "ai_vendor": "MailEnable",
    "ai_product": "MailEnable",
    "ai_version": "< 10.54",
    "ai_score": 8.5
}

MailEnable < 10.54 DLL Hijacking via Unsafe Loading of MEAINFY.DLL_CVE-2025-34396