83
Mercur Mailserver 3.3 to 4.2 IMAP Auth remote buffer overflow
SMTP
2004/03/23
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
2004/11/13
1.2
Corrected the plugin structure and added the accuracy values in 1.2
tcp
25
open|sleep|close|pattern_exists 220 *MERCUR SMTP-Server (v3.3* OR 220 *MERCUR SMTP-Server (v4.0* OR 220 *MERCUR SMTP-Server (v4.2*
80
Atrium Software MERCUR Mailserver 4.2 with SP3a is the first version that is not vulnerable. This plugin is not able to detect the existence of the installed SP3a. Please verify this for yourself to eliminate a false-positive.
Mercur SMTP-Server 3.3 to 4.2 without SP3a
Mercur SMTP-Server 4.2 with SP3a and newer
Buffer Overflow
The Mercur Mailserver is a small Mail Transfer Agent (MTA). It has been reported that there is a buffer overflow in the IMAP AUTH command. The issue occurs when an overly long command is submitted. This could lead to privileged access to the vulnerable system.
This vulnerability has been resolved in version 4.2 Service Pack 3a. See referenced vendor advisory for additional details.
1 hour
Yes
http://www.securityfocus.com/bid/8861/exploit/
Yes
Yes
High
7
8
9
7
8861
Hacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
http://www.computec.ch
