5 results (0.008 seconds)

CVSS: 10.0EPSS: 55%CPEs: 5EXPL: 1

Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command. Un desbordamiento de búfer en la región heap de la memoria en Atrium MERCUR IMAPD, permite a atacantes remotos tener un impacto desconocido por medio de un cierto comando SUBSCRIBE. • https://www.exploit-db.com/exploits/3537 http://secunia.com/advisories/24619 http://www.immunitysec.com/partners-index.shtml http://www.osvdb.org/33546 http://www.securityfocus.com/bid/23050 http://www.vupen.com/english/advisories/2007/1092 https://exchange.xforce.ibmcloud.com/vulnerabilities/33216 https://www.immunityinc.com/downloads/immpartners/MercurImapSubscribe.tar • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0

Unspecified vulnerability in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (crash) via a TOP command to the POP3 service. Vulnerabilidad no especificada en MERCUR Messaging 2005 anterior a Service Pack 4 permite a atacantes remotos provocar denegación de servicio (caida) a través del comando TOP en el servicio POP3. • http://secunia.com/advisories/20432 http://www.atrium-software.com/download/McrReadMe_EN.html http://www.securityfocus.com/bid/18462 http://www.vupen.com/english/advisories/2006/2354 https://exchange.xforce.ibmcloud.com/vulnerabilities/27232 •

CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0

The SMTP service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (infinite loop) via a message in which neither the originator nor recipient address is known. El servicio SMTP en MERCUR Messaging 2005 anterior a Service Pack 4 permite a atacantes remotos provocar denegación de servicio (bucle infinito) a través de un mensaje en el cual ni saben al autor ni la dirección receptora. • http://secunia.com/advisories/20432 http://www.atrium-software.com/download/McrReadMe_EN.html http://www.securityfocus.com/bid/18462 http://www.vupen.com/english/advisories/2006/2354 https://exchange.xforce.ibmcloud.com/vulnerabilities/27230 •

CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0

Multiple buffer overflows in MERCUR Messaging 2005 before Service Pack 4 allow remote attackers to cause a denial of service (crash) via (1) "long command lines at port 32000" and (2) certain name service queries that are not properly handled by the SMTP service. Múltiples desbordamientos de búfer en MERCUR Messaging 2005 anterior a Service Pack 4 permite a atacantes remotos provocar denegación de servicio (caida) a través de (1)"lineas de comando en el puerto 32000" y (2) ciertas consulta de nombres de servicio que no son manejada adecuadamente por el servicio SMTP. • http://secunia.com/advisories/20432 http://www.atrium-software.com/download/McrReadMe_EN.html http://www.securityfocus.com/bid/18462 http://www.vupen.com/english/advisories/2006/2354 https://exchange.xforce.ibmcloud.com/vulnerabilities/27231 •

CVSS: 5.0EPSS: 1%CPEs: 11EXPL: 0

The IMAP4 service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (crash) via a message with a long subject field. El servicio IMAP4 en MERCUR Messaging 2005 anterior a Service Pack 4 permite a atacantes remotos provocar denegación de servicio (caida) a través de un mensaje con un campo subject. • http://secunia.com/advisories/20432 http://www.atrium-software.com/download/McrReadMe_EN.html http://www.securityfocus.com/bid/18462 http://www.vupen.com/english/advisories/2006/2354 https://exchange.xforce.ibmcloud.com/vulnerabilities/27229 •