VYPR
Vendor

Atrium Software

Products
6
CVEs
15
Across products
19
Status
Private

Products

6

Recent CVEs

15
  • CVE-2007-1579Mar 21, 2007
    risk 0.07cvss epss 0.56

    Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command.

  • CVE-2007-1578Mar 21, 2007
    risk 0.04cvss epss 0.16

    Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD (mcrimap4.exe) 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow.

  • CVE-2003-1177Dec 31, 2003
    risk 0.04cvss epss 0.13

    Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.

  • CVE-2001-0280May 3, 2001
    risk 0.04cvss epss 0.13

    Buffer overflow in MERCUR SMTP server 3.30 allows remote attackers to execute arbitrary commands via a long EXPN command.

  • CVE-2000-0198Mar 15, 2000
    risk 0.04cvss epss 0.08

    Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.

  • CVE-2002-1073Oct 4, 2002
    risk 0.03cvss epss 0.06

    Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password.

  • CVE-2001-0442Jun 27, 2001
    risk 0.03cvss epss 0.05

    Buffer overflow in Mercury MTA POP3 server for NetWare 1.48 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long APOP command.

  • CVE-2000-0341May 1, 2000
    risk 0.03cvss epss 0.05

    ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name.

  • CVE-2000-0239Mar 15, 2000
    risk 0.03cvss epss 0.04

    Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.

  • CVE-2006-7038Feb 23, 2007
    risk 0.00cvss epss 0.02

    Multiple buffer overflows in MERCUR Messaging 2005 before Service Pack 4 allow remote attackers to cause a denial of service (crash) via (1) "long command lines at port 32000" and (2) certain name service queries that are not properly handled by the SMTP service.

  • CVE-2006-7039Feb 23, 2007
    risk 0.00cvss epss 0.01

    The IMAP4 service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (crash) via a message with a long subject field.

  • CVE-2006-7041Feb 23, 2007
    risk 0.00cvss epss 0.02

    The SMTP service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (infinite loop) via a message in which neither the originator nor recipient address is known.

  • CVE-2006-7040Feb 23, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (crash) via a TOP command to the POP3 service.

  • CVE-2003-1322Dec 31, 2003
    risk 0.00cvss epss 0.06

    Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10)…

  • CVE-2000-0318Apr 21, 2000
    risk 0.00cvss epss 0.01

    Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.