Lucene search

[email protected]CVE-2003-1322

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1322

2003-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2003-1322

stack-based buffer overflows

atrium mercur imapd

mercur mailserver

remote code execution

security vulnerability

nvd

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.035 Low

EPSS

Percentile

91.6%

JSON

Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10) CREATE, or (11) SELECT command.

CPENameOperatorVersion
atrium_software:mercur_mailserveratrium software mercur mailserverle4.2

CPE	Name	Operator	Version
atrium_software:mercur_mailserver	atrium software mercur mailserver	le	4.2

References

www.iss.net/security_center/static/12203.php

www.securityfocus.com/archive/1/324136

www.securityfocus.com/bid/7842

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.035 Low

EPSS

Percentile

91.6%

JSON

Related for CVE-2003-1322

cvelist1 securityvulns1