Mercury IMAP Server <= 4.52 SEARCH Command Buffer Overflow

medium Nessus Network Monitor Plugin ID 4220

Synopsis

The remote IMAP server is affected by a buffer overflow vulnerability.

Description

The remote host is running the Mercury Mail Transport System, a free suite of server products for Windows and NetWare associated with Pegasus Mail. The remote installation of Mercury Mail includes an IMAP server that is affected by a buffer overflow vulnerability. Using a specially-crafted SEARCH command, an authenticated remote attacker can leverage this issue to crash the remote application and even execute arbitrary code, subject to the privileges under which the application runs.

Solution

Upgrade to a version of higher than 4.52.

Plugin Details

Severity: Medium

ID: 4220

Family: IMAP Servers

Published: 9/20/2007

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 5.2

Temporal Score: 4.9

Vector: CVSS2#AV:A/AC:L/Au:S/C:P/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 5.4

Vector: CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:F/RL:U/RC:X

Vulnerability Information

CPE: cpe:/a:david_harris:mercury_32

Reference Information

CVE: CVE-2007-5018

BID: 25733