MERCUR Messaging Control Server Multiple Buffer Overflows

High Nessus Plugin ID 19600


The remote administrative system has multiple buffer overflow vulnerabilities.


The remote host is running MERCUR Messaging Control Server, a telnet/web server to control MERCUR Messaging software.

According to its banner, the remote version of this software is vulnerable to multiple buffer overflow vulnerabilities. A remote attacker could exploit these flaws by sending specially crafted packets to port 32000, leading to a denial of service, or possibly arbitrary code execution.


Upgrade to MERCUR Messaging 2005+SP3 or later.

Plugin Details

Severity: High

ID: 19600

File Name: mercur_control_overflow.nasl

Version: $Revision: 1.10 $

Type: remote

Agent: windows

Family: Windows

Published: 2005/09/08

Modified: 2012/09/21

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P