How can I help you? Start Chat

US Phone: 1-866-488-6691
International Phone: +44-2036087492

  • E-Mail
  • Facebook
  • LinkedIn
  • Twitter

Check Point Advisories

Preemptive Protection against Mercury Mail Transport System SMTP AUTH CRAM-MD5 Buffer Overflow Vulnerability

Check Point Reference: CPAI-2007-103
Date Published: 29 Aug 2007
Severity: Critical
Last Updated: 27 Jul 2008
Source: FrSIRT/ADV-2007-2918
Industry Reference:CVE-2007-4440
Protection Provided by:
Who is Vulnerable? Mercury Mail Transport System version 4.51 and prior
Vulnerability Description A buffer overflow vulnerability has been reported in Mercury Mail Transport System. Mercury Mail Transport System is a free mail server program that supports various email access and exchange protocols, including the Simple Mail Transfer Protocol (SMTP). A remote attacker can exploit this issue to create a denial of service condition or to execute arbitrary code on a vulnerable system.
Update/Patch AvaliableApply patches:

http://www.pmail.com/patches.htm
Vulnerability DetailsThe vulnerability is due to a boundary error in the Mercury Mail Transport System that fails to properly handle CRAM-MD5 strings following the SMTP AUTH command.  An attacker can exploit this flaw via a long AUTH CRAM-MD5 string. Successful exploitation may allow an attacker to create a denial of service condition or execute arbitrary code on an affected server.

Protection Overview