Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    13 vulnerabilities by pmail

    VAR-199804-0010

    Vulnerability from variot - Updated: 2024-05-15 22:53

    Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. apple's AppleShare Unspecified vulnerabilities exist in products from multiple vendors.None. The issue presents itself due to insufficient bounds checking performed when handling malicious SMTP HELO command arguments of excessive length. A remote attacker may exploit this condition to trigger a denial-of-service in the affected daemon. Sendmail 8.8.8 is affected; earlier versions may also be vulnerable

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-199804-0010",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "mercury mail server",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "pmail",
            "version": null
          },
          {
            "model": "slmail",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "seattlelab",
            "version": "2.6"
          },
          {
            "model": "appleshare",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "apple",
            "version": null
          },
          {
            "model": "slmail",
            "scope": null,
            "trust": 0.8,
            "vendor": "seattlelab",
            "version": null
          },
          {
            "model": "mercury mail transport system",
            "scope": null,
            "trust": 0.8,
            "vendor": "pegasus mail",
            "version": null
          },
          {
            "model": "appleshare",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "\u30a2\u30c3\u30d7\u30eb",
            "version": null
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.14.4"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.14.3"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.8"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.7"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.6"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.5"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.4"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.3"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.2"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.13.1"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.11"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.10"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.9"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.8"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.7"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.6"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.5"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.4"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.3"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.2"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.1"
          },
          {
            "model": "consortium sendmail beta7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12"
          },
          {
            "model": "consortium sendmail beta5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12"
          },
          {
            "model": "consortium sendmail beta16",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12"
          },
          {
            "model": "consortium sendmail beta12",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12"
          },
          {
            "model": "consortium sendmail beta10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.12.0"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.7"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.6"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.5"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.4"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.3"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.2"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11.1"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.11"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.10.2"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.10.1"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.10"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.8.8"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "5.65"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "5.61"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "5.59"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "4.55"
          },
          {
            "model": "consortium sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "4.1"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.11"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.10.1"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.10"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.5"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.4"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.3"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.2"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.1"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8.x"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.8"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.6"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.5"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.4"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.3"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.2"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.1"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.7.x"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.6.10"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.6.9"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "8.6.x"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "5.59"
          },
          {
            "model": "allman sendmail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "eric",
            "version": "5.58"
          },
          {
            "model": "consortium sendmail",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "sendmail",
            "version": "8.9.0"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "49431"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:apple:appleshare:-:*:*:ja:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:pmail:mercury_mail_server:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:seattlelab:slmail:2.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "rootshell.com",
        "sources": [
          {
            "db": "BID",
            "id": "49431"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-1999-0098",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": true,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 10.0,
                "confidentialityImpact": "Complete",
                "exploitabilityScore": null,
                "id": "CVE-1999-0098",
                "impactScore": null,
                "integrityImpact": "Complete",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "VHN-98",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-1999-0098",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-199804-003",
                "trust": 0.6,
                "value": "CRITICAL"
              },
              {
                "author": "VULHUB",
                "id": "VHN-98",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. apple\u0027s AppleShare Unspecified vulnerabilities exist in products from multiple vendors.None. \nThe issue presents itself due to insufficient bounds checking performed when handling malicious SMTP HELO command arguments of excessive length. A remote attacker may exploit this condition to trigger a denial-of-service in the affected daemon. \nSendmail 8.8.8 is affected; earlier versions may also be vulnerable",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "BID",
            "id": "49431"
          },
          {
            "db": "VULHUB",
            "id": "VHN-98"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-1999-0098",
            "trust": 3.6
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003",
            "trust": 0.7
          },
          {
            "db": "BID",
            "id": "49431",
            "trust": 0.4
          },
          {
            "db": "VULHUB",
            "id": "VHN-98",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "db": "BID",
            "id": "49431"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "id": "VAR-199804-0010",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-98"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2024-05-15T22:53:31.351000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "top page",
            "trust": 0.8,
            "url": "https://www.pmail.com/overviews/ovw_mercwin.htm"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          },
          {
            "problemtype": "others (CWE-Other) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/cve-1999-0098"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-1999-0098"
          },
          {
            "trust": 0.3,
            "url": "http://marc.info/?l=bugtraq\u0026m=90221101925991\u0026w=2"
          },
          {
            "trust": 0.3,
            "url": "http://marc.info/?l=bugtraq\u0026m=90221101926003\u0026w=2"
          },
          {
            "trust": 0.1,
            "url": ""
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "db": "BID",
            "id": "49431"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "db": "BID",
            "id": "49431"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "1998-04-01T00:00:00",
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "date": "1998-04-01T00:00:00",
            "db": "BID",
            "id": "49431"
          },
          {
            "date": "2024-05-13T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "date": "1998-04-01T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "date": "1998-04-01T05:00:00",
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2018-01-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-98"
          },
          {
            "date": "1998-04-01T00:00:00",
            "db": "BID",
            "id": "49431"
          },
          {
            "date": "2024-05-13T09:05:00",
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          },
          {
            "date": "2022-08-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          },
          {
            "date": "2022-08-17T07:15:10.917000",
            "db": "NVD",
            "id": "CVE-1999-0098"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "apple\u0027s \u00a0AppleShare\u00a0 Vulnerabilities in products from multiple vendors such as",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-1998-000021"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-199804-003"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2017-9046 (GCVE-0-2017-9046)

    Vulnerability from nvd – Published: 2017-05-21 14:00 – Updated: 2024-08-05 16:55
    VLAI
    Summary
    winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2017-05-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T16:55:21.916Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2017-05-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-05-21T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2017-9046",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html",
                  "refsource": "MISC",
                  "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2017-9046",
        "datePublished": "2017-05-21T14:00:00.000Z",
        "dateReserved": "2017-05-17T00:00:00.000Z",
        "dateUpdated": "2024-08-05T16:55:21.916Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2009-3838 (GCVE-0-2009-3838)

    Vulnerability from nvd – Published: 2009-11-02 15:00 – Updated: 2024-08-07 06:38
    VLAI
    Summary
    Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2009-10-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T06:38:30.352Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "36797",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/36797"
              },
              {
                "name": "59261",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/59261"
              },
              {
                "name": "ADV-2009-3026",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2009/3026"
              },
              {
                "name": "37134",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/37134"
              },
              {
                "name": "1023075",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1023075"
              },
              {
                "name": "20091022 {PRL} Pegasus Mail client BoF",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
              },
              {
                "name": "pegasus-pop3-bo(53933)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2009-10-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-10T18:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "36797",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/36797"
            },
            {
              "name": "59261",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/59261"
            },
            {
              "name": "ADV-2009-3026",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/3026"
            },
            {
              "name": "37134",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/37134"
            },
            {
              "name": "1023075",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1023075"
            },
            {
              "name": "20091022 {PRL} Pegasus Mail client BoF",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
            },
            {
              "name": "pegasus-pop3-bo(53933)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2009-3838",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "36797",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/36797"
                },
                {
                  "name": "59261",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/59261"
                },
                {
                  "name": "ADV-2009-3026",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2009/3026"
                },
                {
                  "name": "37134",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/37134"
                },
                {
                  "name": "1023075",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1023075"
                },
                {
                  "name": "20091022 {PRL} Pegasus Mail client BoF",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
                },
                {
                  "name": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt",
                  "refsource": "MISC",
                  "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
                },
                {
                  "name": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php",
                  "refsource": "MISC",
                  "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
                },
                {
                  "name": "pegasus-pop3-bo(53933)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2009-3838",
        "datePublished": "2009-11-02T15:00:00.000Z",
        "dateReserved": "2009-11-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T06:38:30.352Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-4440 (GCVE-0-2007-4440)

    Vulnerability from nvd – Published: 2007-08-21 00:00 – Updated: 2024-08-07 14:53
    VLAI
    Summary
    Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/26519 third-party-advisoryx_refsource_SECUNIA
    http://archives.neohapsis.com/archives/fulldisclo… mailing-listx_refsource_FULLDISC
    http://www.vupen.com/english/advisories/2007/2918 vdb-entryx_refsource_VUPEN
    https://www.exploit-db.com/exploits/4294 exploitx_refsource_EXPLOIT-DB
    http://www.pmail.com/m32_451.htm x_refsource_CONFIRM
    http://www.securityfocus.com/bid/25357 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id?1018587 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2007-08-18 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T14:53:55.921Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "26519",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26519"
              },
              {
                "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
              },
              {
                "name": "ADV-2007-2918",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2918"
              },
              {
                "name": "4294",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/4294"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.pmail.com/m32_451.htm"
              },
              {
                "name": "25357",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/25357"
              },
              {
                "name": "mercury-smtp-bo(36117)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
              },
              {
                "name": "1018587",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018587"
              },
              {
                "name": "mercury-authcrammd5-bo(36299)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-08-18T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-09-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "26519",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26519"
            },
            {
              "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
            },
            {
              "name": "ADV-2007-2918",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2918"
            },
            {
              "name": "4294",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/4294"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.pmail.com/m32_451.htm"
            },
            {
              "name": "25357",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/25357"
            },
            {
              "name": "mercury-smtp-bo(36117)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
            },
            {
              "name": "1018587",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018587"
            },
            {
              "name": "mercury-authcrammd5-bo(36299)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-4440",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "26519",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26519"
                },
                {
                  "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
                  "refsource": "FULLDISC",
                  "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
                },
                {
                  "name": "ADV-2007-2918",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2918"
                },
                {
                  "name": "4294",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/4294"
                },
                {
                  "name": "http://www.pmail.com/m32_451.htm",
                  "refsource": "CONFIRM",
                  "url": "http://www.pmail.com/m32_451.htm"
                },
                {
                  "name": "25357",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/25357"
                },
                {
                  "name": "mercury-smtp-bo(36117)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
                },
                {
                  "name": "1018587",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018587"
                },
                {
                  "name": "mercury-authcrammd5-bo(36299)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-4440",
        "datePublished": "2007-08-21T00:00:00.000Z",
        "dateReserved": "2007-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T14:53:55.921Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-1373 (GCVE-0-2007-1373)

    Vulnerability from nvd – Published: 2007-03-10 00:00 – Updated: 2024-08-07 12:50
    VLAI
    Summary
    Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command. NOTE: this might be the same issue as CVE-2006-5961.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://osvdb.org/33883 vdb-entryx_refsource_OSVDB
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://securityreason.com/securityalert/2398 third-party-advisoryx_refsource_SREASON
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/24367 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-03-06 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:50:35.454Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "33883",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33883"
              },
              {
                "name": "20070306 Mercury/32 4.01b",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
              },
              {
                "name": "2398",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/2398"
              },
              {
                "name": "mercury-imap-bo(32848)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
              },
              {
                "name": "24367",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24367"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-03-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command.  NOTE: this might be the same issue as CVE-2006-5961."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "33883",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33883"
            },
            {
              "name": "20070306 Mercury/32 4.01b",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
            },
            {
              "name": "2398",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/2398"
            },
            {
              "name": "mercury-imap-bo(32848)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
            },
            {
              "name": "24367",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24367"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-1373",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command.  NOTE: this might be the same issue as CVE-2006-5961."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "33883",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33883"
                },
                {
                  "name": "20070306 Mercury/32 4.01b",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
                },
                {
                  "name": "2398",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/2398"
                },
                {
                  "name": "mercury-imap-bo(32848)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
                },
                {
                  "name": "24367",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24367"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-1373",
        "datePublished": "2007-03-10T00:00:00.000Z",
        "dateReserved": "2007-03-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:50:35.454Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2513 (GCVE-0-2004-2513)

    Vulnerability from nvd – Published: 2005-10-25 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2004-11-29 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.638Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
              },
              {
                "name": "663",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/663"
              },
              {
                "name": "pegasus-imap-select-bo(18295)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-11-29T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-18T16:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
            },
            {
              "name": "663",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/663"
            },
            {
              "name": "pegasus-imap-select-bo(18295)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2513",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html",
                  "refsource": "MISC",
                  "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
                },
                {
                  "name": "663",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/663"
                },
                {
                  "name": "pegasus-imap-select-bo(18295)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2513",
        "datePublished": "2005-10-25T04:00:00.000Z",
        "dateReserved": "2005-10-25T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.638Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-1999-0098 (GCVE-0-1999-0098)

    Vulnerability from nvd – Published: 2000-02-04 05:00 – Updated: 2024-08-01 16:27
    VLAI
    Summary
    Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T16:27:56.969Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-17T06:39:19.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-1999-0098",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098",
                  "refsource": "MISC",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-1999-0098",
        "datePublished": "2000-02-04T05:00:00.000Z",
        "dateReserved": "1999-06-07T00:00:00.000Z",
        "dateUpdated": "2024-08-01T16:27:56.969Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-9046 (GCVE-0-2017-9046)

    Vulnerability from cvelistv5 – Published: 2017-05-21 14:00 – Updated: 2024-08-05 16:55
    VLAI
    Summary
    winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2017-05-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T16:55:21.916Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2017-05-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-05-21T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2017-9046",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html",
                  "refsource": "MISC",
                  "url": "https://packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2017-9046",
        "datePublished": "2017-05-21T14:00:00.000Z",
        "dateReserved": "2017-05-17T00:00:00.000Z",
        "dateUpdated": "2024-08-05T16:55:21.916Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2009-3838 (GCVE-0-2009-3838)

    Vulnerability from cvelistv5 – Published: 2009-11-02 15:00 – Updated: 2024-08-07 06:38
    VLAI
    Summary
    Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2009-10-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T06:38:30.352Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "36797",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/36797"
              },
              {
                "name": "59261",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/59261"
              },
              {
                "name": "ADV-2009-3026",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2009/3026"
              },
              {
                "name": "37134",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/37134"
              },
              {
                "name": "1023075",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1023075"
              },
              {
                "name": "20091022 {PRL} Pegasus Mail client BoF",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
              },
              {
                "name": "pegasus-pop3-bo(53933)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2009-10-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-10T18:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "36797",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/36797"
            },
            {
              "name": "59261",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/59261"
            },
            {
              "name": "ADV-2009-3026",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/3026"
            },
            {
              "name": "37134",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/37134"
            },
            {
              "name": "1023075",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1023075"
            },
            {
              "name": "20091022 {PRL} Pegasus Mail client BoF",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
            },
            {
              "name": "pegasus-pop3-bo(53933)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2009-3838",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in Pegasus Mail (PMail) 4.41 and possibly 4.51 allows remote POP3 servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long error message."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "36797",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/36797"
                },
                {
                  "name": "59261",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/59261"
                },
                {
                  "name": "ADV-2009-3026",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2009/3026"
                },
                {
                  "name": "37134",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/37134"
                },
                {
                  "name": "1023075",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1023075"
                },
                {
                  "name": "20091022 {PRL} Pegasus Mail client BoF",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/507377/100/0/threaded"
                },
                {
                  "name": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt",
                  "refsource": "MISC",
                  "url": "http://www.packetstormsecurity.org/0910-exploits/pegasusmc-dos.txt"
                },
                {
                  "name": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php",
                  "refsource": "MISC",
                  "url": "http://www.vupen.com/exploits/Pegasus_Mail_POP3_Message_Handling_Remote_Buffer_Overflow_Exploit_3026233.php"
                },
                {
                  "name": "pegasus-pop3-bo(53933)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53933"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2009-3838",
        "datePublished": "2009-11-02T15:00:00.000Z",
        "dateReserved": "2009-11-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T06:38:30.352Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-4440 (GCVE-0-2007-4440)

    Vulnerability from cvelistv5 – Published: 2007-08-21 00:00 – Updated: 2024-08-07 14:53
    VLAI
    Summary
    Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/26519 third-party-advisoryx_refsource_SECUNIA
    http://archives.neohapsis.com/archives/fulldisclo… mailing-listx_refsource_FULLDISC
    http://www.vupen.com/english/advisories/2007/2918 vdb-entryx_refsource_VUPEN
    https://www.exploit-db.com/exploits/4294 exploitx_refsource_EXPLOIT-DB
    http://www.pmail.com/m32_451.htm x_refsource_CONFIRM
    http://www.securityfocus.com/bid/25357 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id?1018587 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2007-08-18 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T14:53:55.921Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "26519",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26519"
              },
              {
                "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
              },
              {
                "name": "ADV-2007-2918",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2918"
              },
              {
                "name": "4294",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/4294"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.pmail.com/m32_451.htm"
              },
              {
                "name": "25357",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/25357"
              },
              {
                "name": "mercury-smtp-bo(36117)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
              },
              {
                "name": "1018587",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018587"
              },
              {
                "name": "mercury-authcrammd5-bo(36299)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-08-18T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-09-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "26519",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26519"
            },
            {
              "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
            },
            {
              "name": "ADV-2007-2918",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2918"
            },
            {
              "name": "4294",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/4294"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.pmail.com/m32_451.htm"
            },
            {
              "name": "25357",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/25357"
            },
            {
              "name": "mercury-smtp-bo(36117)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
            },
            {
              "name": "1018587",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018587"
            },
            {
              "name": "mercury-authcrammd5-bo(36299)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-4440",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in the MercuryS SMTP server in Mercury Mail Transport System, possibly 4.51 and earlier, allows remote attackers to execute arbitrary code via a long AUTH CRAM-MD5 string. NOTE: this might overlap CVE-2006-5961."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "26519",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26519"
                },
                {
                  "name": "20070818 Mercury SMTPD Remote Preauth Stack Based Overrun",
                  "refsource": "FULLDISC",
                  "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-08/0341.html"
                },
                {
                  "name": "ADV-2007-2918",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2918"
                },
                {
                  "name": "4294",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/4294"
                },
                {
                  "name": "http://www.pmail.com/m32_451.htm",
                  "refsource": "CONFIRM",
                  "url": "http://www.pmail.com/m32_451.htm"
                },
                {
                  "name": "25357",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/25357"
                },
                {
                  "name": "mercury-smtp-bo(36117)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36117"
                },
                {
                  "name": "1018587",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018587"
                },
                {
                  "name": "mercury-authcrammd5-bo(36299)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36299"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-4440",
        "datePublished": "2007-08-21T00:00:00.000Z",
        "dateReserved": "2007-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T14:53:55.921Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-1373 (GCVE-0-2007-1373)

    Vulnerability from cvelistv5 – Published: 2007-03-10 00:00 – Updated: 2024-08-07 12:50
    VLAI
    Summary
    Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command. NOTE: this might be the same issue as CVE-2006-5961.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://osvdb.org/33883 vdb-entryx_refsource_OSVDB
    http://lists.grok.org.uk/pipermail/full-disclosur… mailing-listx_refsource_FULLDISC
    http://securityreason.com/securityalert/2398 third-party-advisoryx_refsource_SREASON
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/24367 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-03-06 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:50:35.454Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "33883",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33883"
              },
              {
                "name": "20070306 Mercury/32 4.01b",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
              },
              {
                "name": "2398",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/2398"
              },
              {
                "name": "mercury-imap-bo(32848)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
              },
              {
                "name": "24367",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24367"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-03-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command.  NOTE: this might be the same issue as CVE-2006-5961."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "33883",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33883"
            },
            {
              "name": "20070306 Mercury/32 4.01b",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
            },
            {
              "name": "2398",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/2398"
            },
            {
              "name": "mercury-imap-bo(32848)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
            },
            {
              "name": "24367",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24367"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-1373",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command.  NOTE: this might be the same issue as CVE-2006-5961."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "33883",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33883"
                },
                {
                  "name": "20070306 Mercury/32 4.01b",
                  "refsource": "FULLDISC",
                  "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052802.html"
                },
                {
                  "name": "2398",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/2398"
                },
                {
                  "name": "mercury-imap-bo(32848)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32848"
                },
                {
                  "name": "24367",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24367"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-1373",
        "datePublished": "2007-03-10T00:00:00.000Z",
        "dateReserved": "2007-03-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:50:35.454Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2513 (GCVE-0-2004-2513)

    Vulnerability from cvelistv5 – Published: 2005-10-25 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2004-11-29 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.638Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
              },
              {
                "name": "663",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/663"
              },
              {
                "name": "pegasus-imap-select-bo(18295)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-11-29T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-18T16:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
            },
            {
              "name": "663",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/663"
            },
            {
              "name": "pegasus-imap-select-bo(18295)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2513",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html",
                  "refsource": "MISC",
                  "url": "http://home.kabelfoon.nl/~jaabogae/han/m_401b.html"
                },
                {
                  "name": "663",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/663"
                },
                {
                  "name": "pegasus-imap-select-bo(18295)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18295"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2513",
        "datePublished": "2005-10-25T04:00:00.000Z",
        "dateReserved": "2005-10-25T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.638Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-1999-0098 (GCVE-0-1999-0098)

    Vulnerability from cvelistv5 – Published: 2000-02-04 05:00 – Updated: 2024-08-01 16:27
    VLAI
    Summary
    Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T16:27:56.969Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-17T06:39:19.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-1999-0098",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098",
                  "refsource": "MISC",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0098"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-1999-0098",
        "datePublished": "2000-02-04T05:00:00.000Z",
        "dateReserved": "1999-06-07T00:00:00.000Z",
        "dateUpdated": "2024-08-01T16:27:56.969Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }