Mercur Messaging Security Vulnerabilities and Issues — Mercur Messaging CVE List

Lucene search

MercurMercur Messaging

3 matches found

CVE•added 2006/03/19 1:2 a.m.•44 views

CVE-2006-1255

Stack-based buffer overflow in the IMAP service in Mercur Messaging 5.0 SP3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string to the (1) LOGIN or (2) SELECT command, a different set of attack vectors and possib...

10CVSS7.8AI score0.86928EPSS

CVE•added 2005/05/18 4:0 a.m.•32 views

CVE-2005-1657

Multiple directory traversal vulnerabilities in Mercur Messaging 2005 SP2 allow remote attackers to perform unauthorized file operations via the Folder.Id parameter to (1) deletefolder.ctml, (2) deletemessage.ctml, (3) origmessage.ctml, or (4) readmessage.ctml, the Message.Id parameter to editmessa...

7.5CVSS7.3AI score0.00801EPSS

CVE•added 2005/05/18 4:0 a.m.•27 views

CVE-2005-1656

Mercur Messaging 2005 SP2 allows remote attackers to read the source code of .ctml files via a URL with a trailing hex-encoded space ("%20").

5CVSS7.1AI score0.00409EPSS