The IMAP4 service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (crash) via a message with a long subject field.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_2000 | Microsoft | * | * |
| Windows_2003_server | Microsoft | sp2 (including) | sp2 (including) |
| Windows_95 | Microsoft | * | * |
| Windows_98 | Microsoft | * | * |
| Windows_98se | Microsoft | * | * |
| Windows_me | Microsoft | * | * |
| Windows_nt | Microsoft | 4.0 (including) | 4.0 (including) |
| Windows_xp | Microsoft | * | * |
References
- http://secunia.com/advisories/20432
- http://www.atrium-software.com/download/McrReadMe_EN.html
- http://www.securityfocus.com/bid/18462
- http://www.vupen.com/english/advisories/2006/2354
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27229
- http://secunia.com/advisories/20432
- http://www.atrium-software.com/download/McrReadMe_EN.html
- http://www.securityfocus.com/bid/18462
- http://www.vupen.com/english/advisories/2006/2354
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27229