cpe:/a:david_harris:mercury:4.0.1a::win32 CVE-2004-1211 2005-01-10T00:00:00.000-05:00 2017-07-10T21:30:50.310-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2004-01-01T00:00:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 11775 OSVDB 12508 SECUNIA 13348 BUGTRAQ 20041201 Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003. CONFIRM http://home.kabelfoon.nl/~jaabogae/han/m_401b.html XF mercury-command-bo(18318) Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.