Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.
References
Configurations
History
No history.
Information
Published : 2005-01-10 05:00
Updated : 2024-02-28 10:42
NVD link : CVE-2004-1211
Mitre link : CVE-2004-1211
CVE.ORG link : CVE-2004-1211
JSON object : View
Products Affected
david_harris
- mercury
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer