Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.200050
Kategorie:Gain a shell remotely
Titel:Mercur Mailserver/Messaging version <= 5.0 IMAP Overflow Vulnerability
Zusammenfassung:The Mercur IMAP4 Service running on the host is vulnerable to buffer overflows; by sending a special crafted 'login' command.
Beschreibung:Summary:
The Mercur IMAP4 Service running on the host is vulnerable to buffer overflows
by sending a special crafted 'login' command.

Vulnerability Impact:
An attacker can use this to crash the service, possible
execute arbitrary code and gain some access privileges on the system.

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: BugTraq ID: 17138
Common Vulnerability Exposure (CVE) ID: CVE-2006-1255
http://www.securityfocus.com/bid/17138
http://seclists.org/fulldisclosure/2006/Mar/1111
http://seclists.org/fulldisclosure/2006/Mar/1167
http://www.osvdb.org/23950
http://secunia.com/advisories/19267
http://www.vupen.com/english/advisories/2006/0977
XForce ISS Database: mercur-imap-bo(25290)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25290
CopyrightCopyright (C) 2008 Ferdy Riphagen

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.