CVE-2003-1177

Name of the Vulnerable Software and Affected Versions MERCUR Mailserver version 4.2 before SP3a

Description A buffer overflow issue exists in the base64 decoder of the affected software, potentially allowing remote attackers to cause a denial of service or execute arbitrary code. This can be achieved by sending a long AUTH command to the POP3 server or a long AUTHENTICATE command to the IMAP server.

Recommendations For MERCUR Mailserver version 4.2 before SP3a, update to a version that includes SP3a or later to resolve the issue. As a temporary workaround, consider restricting access to the POP3 and IMAP servers until the update can be applied.