MERCUR Messaging Control Server Multiple Buffer Overflows
High Nessus Plugin ID 19600
SynopsisThe remote administrative system has multiple buffer overflow vulnerabilities.
DescriptionThe remote host is running MERCUR Messaging Control Server, a telnet/web server to control MERCUR Messaging software.
According to its banner, the remote version of this software is vulnerable to multiple buffer overflow vulnerabilities. A remote attacker could exploit these flaws by sending specially crafted packets to port 32000, leading to a denial of service, or possibly arbitrary code execution.
SolutionUpgrade to MERCUR Messaging 2005+SP3 or later.