Synopsis
The remote administrative system has multiple buffer overflow vulnerabilities.
Description
The remote host is running MERCUR Messaging Control Server, a telnet/web server to control MERCUR Messaging software.
According to its banner, the remote version of this software is vulnerable to multiple buffer overflow vulnerabilities. A remote attacker could exploit these flaws by sending specially crafted packets to port 32000, leading to a denial of service, or possibly arbitrary code execution.
Solution
Upgrade to MERCUR Messaging 2005+SP3 or later.
Plugin Details
File Name: mercur_control_overflow.nasl
Agent: windows
Supported Sensors: Nessus