Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-8077
HistoryDec 03, 2015 - 8:59 p.m.

CVE-2015-8077

2015-12-0320:59:00
CWE-189
[email protected]
web.nvd.nist.gov
23
cve
2015
8077
integer overflow
index_urlfetch function
cyrus imap
remote attackers
unspecified impact
vectors
range checks
start_octet variable
incomplete fix
cve-2015-8076

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.6%

JSON

Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the start_octet variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.

Related

prion 3
ubuntucve 3
cvelist 3
nessus 8
suse 2
openvas 5
freebsd 1
altlinux 3
mageia 1
fedora 3
cve 2
seebug 1
prion
prion
Integer overflow
2015-12-03 20:59:00
Heap overflow
2015-12-03 20:59:00
Integer overflow
2015-12-03 20:59:00
ubuntucve
ubuntucve
CVE-2015-8077
2015-12-03 00:00:00
CVE-2015-8076
2015-12-03 00:00:00
CVE-2015-8078
2015-12-03 00:00:00
cvelist
cvelist
CVE-2015-8077
2015-12-03 20:00:00
CVE-2015-8076
2015-12-03 20:00:00
CVE-2015-8078
2015-12-03 20:00:00
nessus
nessus
openSUSE Security Update : cyrus-imapd (openSUSE-2015-859)
2015-12-17 00:00:00
SUSE SLES12 Security Update : cyrus-imapd (SUSE-SU-2016:1457-1) (POODLE)
2016-06-17 00:00:00
FreeBSD : cyrus-imapd -- integer overflow in the start_octet addition (d62ec98e-97d8-11e5-8c0e-080027b00c2e)
2015-12-02 00:00:00
suse
suse
Security update for cyrus-imapd (important)
2016-05-31 22:07:35
Security update for cyrus-imapd (important)
2016-06-01 12:07:51
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:1457-1)
2021-04-19 00:00:00
SUSE: Security Advisory for cyrus-imapd (SUSE-SU-2016:1457-1)
2016-06-03 00:00:00
Mageia: Security Advisory (MGASA-2016-0045)
2016-02-08 00:00:00
freebsd
freebsd
cyrus-imapd -- integer overflow in the start_octet addition
2015-11-04 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package cyrus-imapd version 2.5.7-alt1
2015-12-11 00:00:00
Security fix for the ALT Linux 7 package cyrus-imapd version 2.4.18-alt1.M70P.1
2016-01-07 00:00:00
Security fix for the ALT Linux 9 package cyrus-imapd version 2.5.7-alt1
2015-12-11 00:00:00
mageia
mageia
Updated cyrus-imapd packages fix security vulnerability
2016-02-05 20:26:09
fedora
fedora
[SECURITY] Fedora 23 Update: cyrus-imapd-2.4.18-1.fc23
2015-11-17 15:57:29
[SECURITY] Fedora 21 Update: cyrus-imapd-2.4.18-1.fc21
2015-11-20 23:29:13
[SECURITY] Fedora 22 Update: cyrus-imapd-2.4.18-1.fc22
2015-11-17 18:32:37
cve
cve
CVE-2015-8076
2015-12-03 20:59:00
CVE-2015-8078
2015-12-03 20:59:00
seebug
seebug
Cyrus IMAP index_urlfetchδΏ‘ζ―ζ³„ιœ²ζΌζ΄ž
2015-12-04 00:00:00

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.6%

JSON
Related for CVE-2015-8077
prion3ubuntucve3cvelist3nessus8suse2openvas5freebsd1altlinux3mageia1fedora3cve2seebug1