SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (E-mail Server)  >   Mercury Mail Transport System Vendors:   Harris, David
Mercury Mail Transport System POP3 Server for Netware Allows Remote Users to Crash the Server
SecurityTracker Alert ID:  1001395
SecurityTracker URL:  http://securitytracker.com/id/1001395
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Apr 22 2001
Impact:   Denial of service via network, Execution of arbitrary code via network
Exploit Included:  Yes  

Description:   It is reported that the Mercury Mail Transport System POP3 server for Netware contains a vulnerability that allows remote users to crash the server.

The report indicates that all versions contain a buffer overflow allowing remote users to crash the Netware server.

The following is a demonstration exploit that should trigger this vulnerability:

perl -e 'print "APOP " . "a"x2048 . " " . "a"x2048 . "\r\n"' | nc host 110

The author reports that it may be possible for remote users to execute arbitrary code on the server.
Impact:   A remote user can cause the Netware server to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.pmail.com/ (Links to External Site)
Cause:   Boundary error
Underlying OS:  

Message History:   This archive entry has one or more follow-up message(s) listed below.
(Fix Available) Re: Mercury Mail Transport System POP3 Server for Netware Allows Remote Users to Crash the Server   (Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL>)
The author of the report clarifies that the current version, 1.48, is not vulnerable.
(A User Adds Details) Re: Mercury Mail Transport System POP3 Server for Netware Allows Remote Users to Crash the Server   (Atro Tossavainen <atossava@CC.HELSINKI.FI>)
A user reports that NetWare servers running Mercury 1.48 will crash, suggesting that the problem was not fixed in version 1.48.


 Source Message Contents
Date:  Sat, 21 Apr 2001 10:52:15 +0200
Subject:  Mercury for NetWare POP3 server vulnerable to remote buffer


Hello,

All versions of widely-used POP3 server from Mercury MTA package for Netware
are vulnerable to remote buffer overflow allowing to crash Netware server:

perl -e 'print "APOP " . "a"x2048 . " " . "a"x2048 . "\r\n"' | nc host 110

Remote execution of malicious code is also theoretically possible.

--
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw@frasunek.com ** PGP: D48684904685DF43EA93AFA13BE170BF *


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC