Lucene search

PRIOn knowledge basePRION:CVE-2007-1578

HistoryMar 21, 2007 - 11:19 p.m.

Stack overflow

2007-03-2123:19:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.608 Medium

EPSS

Percentile

97.7%

JSON

Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD (mcrimap4.exe) 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow.

CPENameOperatorVersion
mercur_imapdeq5.0.14 sp4

CPE	Name	Operator	Version
	mercur_imapd	eq	5.0.14 sp4

References

archives.neohapsis.com/archives/fulldisclosure/2007-03/0280.html

secunia.com/advisories/24596

securitytracker.com/id?1017798

www.digit-labs.org/files/exploits/mercur-v1.pl

www.osvdb.org/33545

www.securityfocus.com/bid/23058

www.vupen.com/english/advisories/2007/1053

exchange.xforce.ibmcloud.com/vulnerabilities/33120

www.exploit-db.com/exploits/3527

7.9 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.608 Medium

EPSS

Percentile

97.7%

JSON

Related for PRION:CVE-2007-1578