|
 |
|
Mercur Messaging IMAP Service Multiple Buffer Overflows
|
|
|
|
|
Secunia Advisory:
|
SA19267
|
|
|
Release Date:
|
2006-03-17
|
|
Last Update:
|
2007-03-29
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Unpatched
|
|
| Software: | Mercur Messaging 2005
|
| | CVE reference: | CVE-2006-1255 (Secunia mirror)
|
|
|
This advisory is currently marked as unpatched!
- Companies can be alerted when a patch is released! |
|
|
Description:
Some vulnerabilities have been discovered in Mercur Messaging 2005, which can be exploited by malicious people and malicious users to compromise a vulnerable system.
The vulnerabilities are caused due to boundary errors within the handling of various IMAP commands. These can be exploited to cause stack-based buffer overflows via overly long arguments passed to e.g. the LOGIN, SELECT, EXAMINE, STATUS, CREATE, DELETE, RENAME, LIST, LSUB, and UNSUBSCRIBE commands. Other commands may also be affected.
Successful exploitation allows arbitrary code execution.
The vulnerabilities are confirmed in versions 5.0 SP3 and SP4. Other versions may also be affected.
Solution:
Use another product.
Provided and/or discovered by:
Tim Taylor
Additional information provided by Secunia Research.
Changelog:
2006-03-21: Added CVE reference.
2007-03-29: Added additional information from Secunia Research.
Original Advisory:
http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/043972.html
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
4 Related Secunia Security Advisories
|
|
|
1. Mercur Messaging IMAP SUBSCRIBE Command Buffer Overflow
|
|
2. Mercur Messaging IMAP NTLM Authentication Processing Vulnerabilities
|
|
3. Mercur Messaging Denial of Service Vulnerabilities
|
|
4. Mercur Messaging Multiple Vulnerabilities
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
