Required CVE Record Information
Description
Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.
References 7 Total
- http://home.kabelfoon.nl/~jaabogae/han/m_401b.html
- secunia.com: 13348 third-party-advisory
- lists.grok.org.uk: 20041201 Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003. mailing-list
- securityfocus.com: 11775 vdb-entry
- marc.info: 20041201 Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003. mailing-list
- exchange.xforce.ibmcloud.com: mercury-command-bo(18318) vdb-entry
- osvdb.org: 12508 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- http://home.kabelfoon.nl/~jaabogae/han/m_401b.html x_transferred
- secunia.com: 13348 third-party-advisoryx_transferred
- lists.grok.org.uk: 20041201 Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003. mailing-listx_transferred
- securityfocus.com: 11775 vdb-entryx_transferred
- marc.info: 20041201 Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003. mailing-listx_transferred
- exchange.xforce.ibmcloud.com: mercury-command-bo(18318) vdb-entryx_transferred
- osvdb.org: 12508 vdb-entryx_transferred