Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:007274958F744CE4343BFBF37053357B
HistorySep 18, 2006 - 12:00 a.m.

Mercury Mail IMAP DELETE command buffer overflow

2006-09-1800:00:00
SAINT Corporation
www.saintcorporation.com
37

0.964 High

EPSS

Percentile

99.6%

JSON

Added: 09/18/2006
CVE: CVE-2004-1211
BID: 11775
OSVDB: 12508

Background

Mercury Mail Transport System is an e-mail server product for Windows and NetWare.

Problem

Buffer overflow vulnerabilities in the IMAP service allow authenticated attackers to execute arbitrary commands using long arguments to several different IMAP commands.

Resolution

Upgrade to Mercury Mail 4.01b or higher, or apply the patch for Mercury Mail 4.01a.

References

<http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0028.html&gt;

Limitations

Exploit works on Mercury Mail Transport System 4.01a and requires a valid IMAP login and password.

Platforms

Windows NT 4.0 SP3
Windows NT 4.0 SP4
Windows NT 4.0 SP5
Windows NT 4.0 SP6 / Windows NT 4.0
Windows 2000 SP0
Windows 2000 SP1
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4 / Windows 2000
Windows XP SP0
Windows XP SP1
Windows XP SP2 / Windows XP
Windows Server 2003

Related

packetstorm 1
cve 2
nessus 1
cvelist 2
saint 3
checkpoint_advisories 1
nvd 2
prion 1
packetstorm
packetstorm
Mercury/32 v4.01a IMAP RENAME Buffer Overflow
2009-11-26 00:00:00
cve
cve
CVE-2004-1211
2005-01-10 05:00:00
CVE-2007-5018
2007-09-20 21:17:00
nessus
nessus
Mercury Mail Remote IMAP Server Remote Overflow
2004-11-30 00:00:00
cvelist
cvelist
CVE-2004-1211
2004-12-15 05:00:00
CVE-2007-5018
2007-09-20 21:00:00
saint
saint
Mercury Mail IMAP DELETE command buffer overflow
2006-09-18 00:00:00
Mercury Mail IMAP DELETE command buffer overflow
2006-09-18 00:00:00
Mercury Mail IMAP DELETE command buffer overflow
2006-09-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Mercury Mail IMAP Buffer Overflow Vulnerability
2007-04-11 00:00:00
nvd
nvd
CVE-2004-1211
2005-01-10 05:00:00
CVE-2007-5018
2007-09-20 21:17:00
prion
prion
Stack overflow
2007-09-20 21:17:00

0.964 High

EPSS

Percentile

99.6%

JSON
Related for SAINT:007274958F744CE4343BFBF37053357B
packetstorm1cve2nessus1cvelist2saint3checkpoint_advisories1nvd2prion1