CVE-2003-1322

Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10) CREATE, or (11) SELECT command.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1322
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
atrium_software / mercur_mailserver	-	4.2.x

http://www.iss.net/security_center/static/12203.php
http://www.securityfocus.com/archive/1/324136
http://www.securityfocus.com/bid/7842

Vulnerability Database

CVE-2003-1322