13 matches found
CVE-2026-43859
mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...
CVE-2026-43859
Mutt vulnerability CVE-2026-43859 affects mutt before 2.3.2, where IMAP auth_cram MD5 digest computation may use strfcpy instead of memcpy. Root cause is choosing the wrong string copy function in the digest pathway. Impact (per CVSS 3.1) is Confidentiality: None, Integrity: Low, Availability: No...
EUVD-2000-0300
Malware in sbrugna...
Mercury Mail SMTP AUTH CRAM-MD5 Buffer Overflow
No description provided by source. $Id: mercurycrammd5.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
Mercury Mail SMTP AUTH CRAM-MD5 Buffer Overflow
This module exploits a stack buffer overflow in Mercury Mail Transport System 4.51. By sending a specially crafted argument to the AUTH CRAM-MD5 command, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Mercury Mail SMTP AUTH CRAM-MD5 buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4440 BID: 25357 OSVDB: 39669 Background Mercury Mail Transport System is an e-mail server product for Windows and NetWare. Problem A buffer overflow vulnerability in the SMTP service allows remote attackers to execute arbitrary commands by sending a specially craft...
Stack overflow
Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961...
CVE-2007-4440
Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961...
CVE-2007-4440
CVE-2007-4440 describes a stack-based buffer overflow in the MercuryS SMTP server of the Mercury Mail Transport System (likely version ≤ 4.51). The vulnerability occurs when processing an SMTP AUTH CRAM-MD5 string, enabling a remote attacker to potentially execute arbitrary code with the privileg...
Mercury Mail Transport System AUTH CRAM-MD5 Buffer Overflow Vulnerability
Description Mercury Mail Transport System is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks when handling AUTH CRAM-MD5 requests. Attackers can exploit this issue to execute arbitrary code with the privileges of the user running th...
CVE-2000-0301
CVE-2000-0301 affects Ipswitch IMAIL server 6.02 and earlier. The issue enables remote attackers to cause a denial of service by sending the AUTH CRAM-MD5 command, impacting availability. The record lists a network-exposed attack with no authentication and a partial availability impact (CVSS v2 b...
CVE-2000-0301
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command...
CVE-2000-0301
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command...