[20373] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Mercury for NetWare POP3 server vulnerable to remote buffer

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)
Mon Apr 23 06:32:27 2001

Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Message-ID:  <20010422203015.Q9241@riget.scene.pl>
Date:         Sun, 22 Apr 2001 20:30:15 +0200
Reply-To: Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL>
From: Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <20010421105215.A18021@riget.scene.pl>; from
              venglin@FREEBSD.LUBLIN.PL on Sat, Apr 21, 2001 at 10:52:15AM +0200

On Sat, Apr 21, 2001 at 10:52:15AM +0200, Przemyslaw Frasunek wrote:
> All versions of widely-used POP3 server from Mercury MTA package for Netware
> are vulnerable to remote buffer overflow allowing to crash Netware server:

Actually, problem was fixed in Mercury 1.48, but no advisory was issued
and older versions are still in wide use. All Mercury-based servers
should be immediately updated.

--
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw@frasunek.com ** PGP: D48684904685DF43EA93AFA13BE170BF *


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[20373] in bugtraq

Re: Mercury for NetWare POP3 server vulnerable to remote buffer

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)Mon Apr 23 06:32:27 2001

daemon@ATHENA.MIT.EDU (Przemyslaw Frasunek)
Mon Apr 23 06:32:27 2001