CVE-2007-5018 – Mercury/32 4.52 IMAPD - 'SEARCH' (Authenticated) Overflow

https://notcve.org/view.php?id=CVE-2007-5018

Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote authenticated users to execute arbitrary code via a long argument in a SEARCH ON command. NOTE: this issue might overlap with CVE-2004-1211. Desbordamiento de búfer basado en pila en el IMAPD del Mercury/32 4.52 permite a usuarios remotos autenticados ejecutar código de su elección a través de un argumento largo en el comando SEARCH ON. NOTA: esta vulnerabilidad puede solaparse con la CVE-2004-1211. • https://www.exploit-db.com/exploits/4429 http://osvdb.org/39670 http://secunia.com/advisories/26878 http://www.securityfocus.com/bid/25733 http://www.securitytracker.com/id?1018714 http://www.vupen.com/english/advisories/2007/3224 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •