12 matches found
EUVD-2003-1312
Malware in sbrugna...
[Full-disclosure] Mercur SP4 IMAPD
The attached exploits several signedness bugs in the NTLM implementation of Mercur IMAPD www.atrium-software.com to give the attacker complete control over a memcpy to a stack variable... non-authenticated In this case, memcpybuf, src+a, b with 'a', and 'b' being user controlled and buf 7208 byte...
CVE-2007-1579
Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command...
CVE-2007-1578
CVE-2007-1578 : MERCUR IMAPD (Atrium MERCUR Messaging Server) is affected by multiple NTLMSSP-related memory corruption issues in the IMAP service’s NTLMSSP handling. The flaw is described as a stack-based buffer overflow triggered by a long NTLMSSP argument, allowing remote attackers to execute ...
CVE-2007-1579
Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command...
CVE-2003-1322
Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long 1 EXAMINE, 2 DELETE, 3 SUBSCRIBE, 4 RENAME, 5 UNSUBSCRIBE, 6 LIST, 7 LSUB, 8 STATUS, 9 LOGIN, 10 CREATE, or 11 SELECT command...
CVE-2003-1322
CVE-2003-1322 concerns Atrium MERCUR IMAPD in MERCUR Mailserver up to version 4.2.15.0. The vulnerability is described as multiple stack-based buffer overflows in the IMAPD process that can be triggered by long commands, including: EXAMINE, DELETE, SUBSCRIBE, RENAME, UNSUBSCRIBE, LIST, LSUB, STAT...
CVE-2007-1579
The CVE-2007-1579 issue affects Atrium MERCUR Messaging Server (MERCUR IMAPD) on Windows, where the IMAP SUBSCRIBE command processing has a stack-based buffer overflow in the IMAP service. The vulnerability allows remote attackers to trigger arbitrary actions via a crafted SUBSCRIBE request, with...
CVE-2007-1578
Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD mcrimap4.exe 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow...
Mercur IMAPD 5.00.14 Remote Denial of Service Exploit (win32)
No description provided by source. !/usr/bin/perl mercur-v1.pl Mercur v5.00.14 win32 remote exploit by mu-b - Dec 2006 - Tested on: Mercur v5.00.14 win32 use Getopt::Std; getopts't:n:', %arg; use Socket; use MIME::Base64; my $target; if defined$arg't' $target = $arg't' if !defined$target my...
Mercur IMAPD 5.00.14 Remote Denial of Service Exploit (win32)
Exploit for unknown platform in category dos / poc ============================================================= Mercur IMAPD 5.00.14 Remote Denial of Service Exploit win32 ============================================================= !/usr/bin/perl mercur-v1.pl Mercur v5.00.14 win32 remote explo...
Mercur IMAPD 5.00.14 (Windows x86) - Remote Denial of Service
Mercur IMAPD 5.00.14 Windows x86 - Remote Denial of Service !/usr/bin/perl mercur-v1.pl Mercur v5.00.14 win32 remote exploit by mu-b - Dec 2006 - Tested on: Mercur v5.00.14 win32 use Getopt::Std; getopts't:n:', %arg; use Socket; use MIME::Base64; my $target; if defined$arg't' $target = $arg't' if...