Multiple buffer overflows in MERCUR Messaging 2005 before Service Pack 4 allow remote attackers to cause a denial of service (crash) via (1) long command lines at port 32000 and (2) certain name service queries that are not properly handled by the SMTP service.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mercur_messaging_2005 | Atrium_software | 5.0_sp3 (including) | 5.0_sp3 (including) |
References
- http://secunia.com/advisories/20432
- http://www.atrium-software.com/download/McrReadMe_EN.html
- http://www.securityfocus.com/bid/18462
- http://www.vupen.com/english/advisories/2006/2354
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27231
- http://secunia.com/advisories/20432
- http://www.atrium-software.com/download/McrReadMe_EN.html
- http://www.securityfocus.com/bid/18462
- http://www.vupen.com/english/advisories/2006/2354
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27231