- Description
- The SMTP service in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service (infinite loop) via a message in which neither the originator nor recipient address is known.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:atrium_software:mercur_messaging_2005:5.0_sp3:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC61ECA1-B3AD-4A74-90CE-59F808C1CD74"
},
{
"criteria": "cpe:2.3:a:atrium_software:mercur_messaging_2005:5.0_sp3:*:lite:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C74E3D1-19FC-46D3-9B62-5AFABED43433"
},
{
"criteria": "cpe:2.3:a:atrium_software:mercur_messaging_2005:5.0_sp3:*:standard:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "495386F7-7D4C-49F0-B091-31F77823FF5E"
}
],
"operator": "OR"
}
]
}
]