Описание
Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD (mcrimap4.exe) 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow.
Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD (mcrimap4.exe) 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-1578
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33120
- https://www.exploit-db.com/exploits/3527
- http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0280.html
- http://secunia.com/advisories/24596
- http://securitytracker.com/id?1017798
- http://www.digit-labs.org/files/exploits/mercur-v1.pl
- http://www.osvdb.org/33545
- http://www.securityfocus.com/bid/23058
- http://www.vupen.com/english/advisories/2007/1053
EPSS
Процентиль: 98%
0.47421
Средний
CVE ID
Связанные уязвимости
nvd
почти 19 лет назад
Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD (mcrimap4.exe) 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow.
EPSS
Процентиль: 98%
0.47421
Средний