8 matches found
CVE-2007-4440
creationtimestamp| type| source ---|---|--- 2010-06-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16821 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/smtp/mercurycrammd5.rb 2025-02-06 03:13:38+00:00| seen|...
Mercury Mail Transport System SMTP AUTH CRAM-MD5 Buffer Overflow (CVE-2007-4440)
Mercury Mail Transport System is an email server suite for the Microsoft Windows platform and Novell NetWare file servers. The product supports various popular mail transfer protocols such as SMTP, POP3 and IMAP. The components of the Mercury Mail product are implemented with individual Dynamic...
Mercury Mail SMTP AUTH CRAM-MD5 Buffer Overflow
This module exploits a stack buffer overflow in Mercury Mail Transport System 4.51. By sending a specially crafted argument to the AUTH CRAM-MD5 command, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Mercury Mail SMTP AUTH CRAM-MD5 buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4440 BID: 25357 OSVDB: 39669 Background Mercury Mail Transport System is an e-mail server product for Windows and NetWare. Problem A buffer overflow vulnerability in the SMTP service allows remote attackers to execute arbitrary commands by sending a specially craft...
Mercury Mail SMTP AUTH CRAM-MD5 buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4440 BID: 25357 OSVDB: 39669 Background Mercury Mail Transport System is an e-mail server product for Windows and NetWare. Problem A buffer overflow vulnerability in the SMTP service allows remote attackers to execute arbitrary commands by sending a specially craft...
CVE-2007-4440
Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961...
CVE-2007-4440
CVE-2007-4440 describes a stack-based buffer overflow in the MercuryS SMTP server of the Mercury Mail Transport System (likely version ≤ 4.51). The vulnerability occurs when processing an SMTP AUTH CRAM-MD5 string, enabling a remote attacker to potentially execute arbitrary code with the privileg...
Mac OS X Multiple Vulnerabilities (Security Update 2007-007)
The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP -...