CVE-2000-0198

MERCUR Mail Server Suite - Denial of Service via Buffer Overflow in POP3 and IMAP Servers

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0198. PoCs published by Ussr Labs.

AI-analyzed exploit summary The exploit describes a buffer overflow vulnerability in Atrium Software Mercur mail server affecting SMTP, POP3, and IMAP commands. The issue causes a crash when an overly long string is provided as an argument to specific commands, but no functional exploit code is included.

Description

Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Ussr Labs · textdoswindows
https://www.exploit-db.com/exploits/19807

The exploit describes a buffer overflow vulnerability in Atrium Software Mercur mail server affecting SMTP, POP3, and IMAP commands. The issue causes a crash when an overly long string is provided as an argument to specific commands, but no functional exploit code is included.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: Atrium Software Mercur Mail Server
No auth needed
Prerequisites: Network access to the mail server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Ussr Labs · cdoswindows
https://www.exploit-db.com/exploits/19806

This exploit demonstrates a denial-of-service (DoS) vulnerability in Atrium Software Mercur mail server by sending an overly long string to the SMTP 'MAIL FROM', POP3 'USER', or IMAP 'LOGIN' commands, causing the application to crash.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Atrium Software Mercur 3.2
No auth needed
Prerequisites: Network access to the target mail server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1051
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/current/0137.html
Third Party Advisory mailing-list x_refsource_ntbugtraq
http://archives.neohapsis.com/archives/ntbugtraq/current/0206.html

Scores

EPSS 0.0843
EPSS Percentile 94.3%

Details

Status published
Products (3)
atrium_software/mercur_imap4_server 3.20.01
atrium_software/mercur_mailserver 3.2
atrium_software/mercur_pop3_server 3.20.01
Published Mar 15, 2000
Tracked Since Feb 18, 2026