RSS   Vulnerabilities for 'Mercur mailserver'   RSS

2003-12-31
 
CVE-2003-1322

 

 
Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10) CREATE, or (11) SELECT command.

 
 
CVE-2003-1177

 

 
Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.

 
2002-10-04
 
CVE-2002-1073

 

 
Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password.

 
2000-04-21
 
CVE-2000-0318

 

 
Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.

 
2000-03-15
 
CVE-2000-0239

 

 
Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.

 
 
CVE-2000-0198

 

 
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.

 

 >>> Vendor: Atrium software 7 Products
Mercur imap4 server
Mercur mailserver
Mercur pop3 server
Cassandra nntp server
Mercur
Mercur messaging 2005
Mercur imapd


Copyright 2019, cxsecurity.com

 

Back to Top