vendor:
Mercur Messaging 2005
by:
Winny Thomas
7.5
CVSS
HIGH
Stack Overflow
CWE
Product Name: Mercur Messaging 2005
Affected Version From: Mercur Messaging 2005 SP3
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows 2000 Server SP4 (VMware)
Remote exploit for stack overflow vulnerability in Mercur Messaging 2005 SP3 IMAP service
The exploit takes advantage of a stack overflow vulnerability in Mercur Messaging 2005 SP3 IMAP service. It allows an attacker to add a user with username 'x' and password 'x' to the admin group. The exploit has been tested on Windows 2000 Server SP4 in a VMware environment. The overflow occurs when the EBX register points to a buffer, which provides a maximum of 224 bytes of uninterrupted space for shellcode.