CVE-2006-1255
CVE-2006-1255
Stack-based buffer overflow in the IMAP service in Mercur Messaging 5.0 SP3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string to the (1) LOGIN or (2) SELECT command, a different set of attack vectors and possibly a different vulnerability than CVE-2003-1177.
Affected products
n/a · n/apublic PoCs found — 6
exploitdbwww.exploit-db.com/exploits/16476unverifiedexploitdbwww.exploit-db.com/exploits/1592unverifiedexploitdbwww.exploit-db.com/exploits/2345unverifiedexploitdbwww.exploit-db.com/exploits/16481unverifiedexploitdbwww.exploit-db.com/exploits/3133unverifiedexploitdbwww.exploit-db.com/exploits/3540unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://seclists.org/fulldisclosure/2006/Mar/1111http://seclists.org/fulldisclosure/2006/Mar/1167http://secunia.com/advisories/19267https://exchange.xforce.ibmcloud.com/vulnerabilities/25290http://www.osvdb.org/23950http://www.securityfocus.com/bid/17138http://www.vupen.com/english/advisories/2006/0977