Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password.
http://www.iss.net/security_center/static/9618.php
http://archives.neohapsis.com/archives/bugtraq/2002-07/0195.html