MERCUR Messaging < 2005 SP4 Multiple Remote DoS Vulnerabilities

High Nessus Plugin ID 21728


The remote mail server is affected by multiple denial of service flaws.


The remote host appears to be running MERCUR Messaging, a commercial mail server for Windows.

According to its banner, the version of MERCUR Messaging installed on the remote host is affected by various denial of service attacks affecting the SMTP, POP3, and IMAP servers.


Upgrade to MERCUR Messaging version 2005 SP4 or later.

See Also

Plugin Details

Severity: High

ID: 21728

File Name: mercur_2005sp4.nasl

Version: $Revision: 1.15 $

Type: remote

Agent: windows

Family: Windows

Published: 2006/06/17

Modified: 2017/07/24

Dependencies: 10185, 11414, 10263

Risk Information

Risk Factor: High


Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2006/06/10

Reference Information

CVE: CVE-2006-7038, CVE-2006-7039, CVE-2006-7040, CVE-2006-7041

BID: 18462

OSVDB: 26515, 26516, 26517, 26518, 26519, 26520, 26521