CVSS: 9.8EPSS: 23%CPEs: 8EXPL: 5CVE-2003-1177 – Atrium Software Mercur MailServer 3.3/4.0/4.2 - IMAP AUTH Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-1177
31 Dec 2003 — Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server. • https://www.exploit-db.com/exploits/23267 •
CVSS: 10.0EPSS: 5%CPEs: 1EXPL: 0CVE-2003-1322
https://notcve.org/view.php?id=CVE-2003-1322
31 Dec 2003 — Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10) CREATE, or (11) SELECT command. • http://www.iss.net/security_center/static/12203.php •
CVSS: 9.8EPSS: 5%CPEs: 6EXPL: 2CVE-2002-1073 – 3.3/4.0/4.2 MERCUR MailServer - Control-Service Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1073
31 Aug 2002 — Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password. • https://www.exploit-db.com/exploits/21626 •