Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://archives.neohapsis.com/archives/fulldisclosure/2003-q4/1459.html - Exploit | |
References | () http://secunia.com/advisories/10038 - Patch | |
References | () http://www.atrium-software.com/mail%20server/pub/mcr42sp3a.html - | |
References | () http://www.osvdb.org/2688 - | |
References | () http://www.securiteam.com/windowsntfocus/6U00N1P8KC.html - Exploit | |
References | () http://www.securityfocus.com/bid/8861 - Exploit | |
References | () http://www.securityfocus.com/bid/8889 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/13468 - |
Information
Published : 2003-12-31 05:00
Updated : 2024-11-20 23:46
NVD link : CVE-2003-1177
Mitre link : CVE-2003-1177
CVE.ORG link : CVE-2003-1177
JSON object : View
Products Affected
atrium_software
- mercur_mailserver
CWE