Lucene search

[email protected]NVD:CVE-2004-1211

HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1211

2005-01-1005:00:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.964

Percentile

99.6%

JSON

Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.

Affected configurations

Nvd

Node

david_harrismercuryMatch4.0.1awin32

VendorProductVersionCPE
david_harrismercury4.0.1acpe:2.3:a:david_harris:mercury:4.0.1a:*:win32:*:*:*:*:*

Vendor	Product	Version	CPE
david_harris	mercury	4.0.1a	cpe:2.3:a:david_harris:mercury:4.0.1a::win32:::::

References

home.kabelfoon.nl/~jaabogae/han/m_401b.html

lists.grok.org.uk/pipermail/full-disclosure/2004-December/029701.html

marc.info/?l=bugtraq&m=110193702909991&w=2

secunia.com/advisories/13348

www.osvdb.org/12508

www.securityfocus.com/bid/11775

exchange.xforce.ibmcloud.com/vulnerabilities/18318

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.964

Percentile

99.6%

JSON

Related for NVD:CVE-2004-1211

packetstorm1 saint4 metasploit1 exploitdb7 cvelist2 nessus1 cve2 checkpoint_advisories1 nvd1 prion1