Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atrium software mercur mailserver 4.1_sp1 |
||
atrium software mercur mailserver 4.2 |
||
atrium software mercur mailserver 4.2_sp1 |
||
atrium software mercur mailserver 4.2_sp2 |
||
atrium software mercur mailserver 3.3 |
||
atrium software mercur mailserver 3.3_sp1 |
||
atrium software mercur mailserver 3.3_sp2 |
||
atrium software mercur mailserver 4.1 |