CVE-2003-1177
MERCUR Mailserver 4.2 - Buffer Overflow via Base64 Decoder in AUTH Command
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2003-1177. PoCs published by Kostya KORTCHINSKY.
AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in MERCUR Mailserver's IMAP AUTH command handling. By sending an overly long AUTH PLAIN command, an attacker can potentially execute arbitrary code or crash the service.
Description
Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.
Exploits (1)
This exploit demonstrates a buffer overflow vulnerability in MERCUR Mailserver's IMAP AUTH command handling. By sending an overly long AUTH PLAIN command, an attacker can potentially execute arbitrary code or crash the service.