[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Mercury for NetWare POP3 server vulnerable to remote buffer overflow

To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Re: Mercury for NetWare POP3 server vulnerable to remote buffer overflow
From: Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL>
Date: Sun, 22 Apr 2001 20:30:15 +0200

On Sat, Apr 21, 2001 at 10:52:15AM +0200, Przemyslaw Frasunek wrote:
> All versions of widely-used POP3 server from Mercury MTA package for Netware
> are vulnerable to remote buffer overflow allowing to crash Netware server:

Actually, problem was fixed in Mercury 1.48, but no advisory was issued
and older versions are still in wide use. All Mercury-based servers
should be immediately updated.

--
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw@frasunek.com ** PGP: D48684904685DF43EA93AFA13BE170BF *

Prev by Date: Re: multiple vulnerabilities in Alcatel Speed Touch DSL modems
Next by Date: Re: Mercury for NetWare POP3 server vulnerable to remote buffer overflow
Prev by thread: Mercury for NetWare POP3 server vulnerable to remote buffer overflow
Next by thread: Re: Mercury for NetWare POP3 server vulnerable to remote buffer overflow
Index(es):
- Date
- Thread