CVE-2001-0280

MERCUR SMTP Server 3.30 - Remote Code Execution via EXPN Command Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0280. PoCs published by Martin Rakhmanoff.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Atrium Software Mercur Mail Server 3.3 via the EXPN command. It sends a crafted payload to overwrite the EIP and execute arbitrary shellcode, potentially leading to remote code execution under the LocalSystem account.

Description

Buffer overflow in MERCUR SMTP server 3.30 allows remote attackers to execute arbitrary commands via a long EXPN command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Martin Rakhmanoff · cremotewindows

https://www.exploit-db.com/exploits/20647

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Atrium Software Mercur Mail Server 3.3 via the EXPN command. It sends a crafted payload to overwrite the EIP and execute arbitrary shellcode, potentially leading to remote code execution under the LocalSystem account.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Atrium Software Mercur Mail Server 3.3

No auth needed

Prerequisites: Network access to the SMTP server (port 25) · Vulnerable version of Mercur Mail Server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/6027

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2001-02/0413.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/6149

Scores

EPSS 0.1297

EPSS Percentile 95.8%

Details

Status published

Products (1)

atrium_software/mercur

Published May 03, 2001

Tracked Since Feb 18, 2026