ID CVE-2000-0239
Summary Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.
References
Vulnerable Configurations
  • cpe:2.3:a:atrium_software:mercur_imap4_server:3.20.01:*:*:*:*:*:*:*
    cpe:2.3:a:atrium_software:mercur_imap4_server:3.20.01:*:*:*:*:*:*:*
  • cpe:2.3:a:atrium_software:mercur_mailserver:3.2:*:*:*:*:*:*:*
    cpe:2.3:a:atrium_software:mercur_mailserver:3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:atrium_software:mercur_pop3_server:3.20.01:*:*:*:*:*:*:*
    cpe:2.3:a:atrium_software:mercur_pop3_server:3.20.01:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 18-10-2016 - 02:06)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bid 1056
bugtraq 20000315 Local / Remote DoS Attack in MERCUR WebView WebMail-Client 1.0
misc http://www.ussrback.com/labs36.html
xf mercur-webview-get-dos
Last major update 18-10-2016 - 02:06
Published 15-03-2000 - 05:00
Last modified 18-10-2016 - 02:06
Back to Top