CVE-2000-0198
published 2000-03-15CVE-2000-0198: Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.
PriorityP420medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
8.43%
94.3th percentile
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atrium_software | mercur_imap4_server | — | — |
| atrium_software | mercur_mailserver | — | — |
| atrium_software | mercur_pop3_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
exploitdb·2000-03-14
CVE-2000-0198 Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (1)
---
// source: https://www.securityfocus.com/bid/1051/info
Atrium Software Mercur is a SMTP, POP3, and IMAP mail server. Insufficient boundary checking exists in the code that handles within the SMTP "mail from" command, the POP3 "user" command and the IMAP "login" command. The application will crash if an overly long string is used as an argument to any of these commands.
*/
#include
#include
#include
#include
#include
#include
#include
#include
void
usage (char *progname)
{
fprintf (stderr, "Usage: %s [type]\n", progname);
fprintf (stderr, " Type:\n");
fprintf (stderr, " 0 - IMAP4 (Default)\n");
fprintf (stderr, " 1 - POP3\n");
fprintf (stderr, " 2 - SMTP\n\n");
exit (1);
}
int
main (int argc, char **argv)
{
c
Exploit-DB
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
exploitdb·2000-03-14
CVE-2000-0198 Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
Atrium Software Mercur Mail Server 3.2 - Multiple Buffer Overflows (2)
---
source: https://www.securityfocus.com/bid/1051/info
Atrium Software Mercur is a SMTP, POP3, and IMAP mail server. Insufficient boundary checking exists in the code that handles within the SMTP "mail from" command, the POP3 "user" command and the IMAP "login" command. The application will crash if an overly long string is used as an argument to any of these commands.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-1.exe
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-2.exe
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19807-3.zip
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/current/0137.htmlhttp://archives.neohapsis.com/archives/ntbugtraq/current/0206.htmlhttp://www.securityfocus.com/bid/1051http://archives.neohapsis.com/archives/bugtraq/current/0137.htmlhttp://archives.neohapsis.com/archives/ntbugtraq/current/0206.htmlhttp://www.securityfocus.com/bid/1051
2000-03-15
Published