CVE-2017-12843

2017-08-22T14:29:00
ID CVE-2017-12843
Type cve
Reporter cve@mitre.org
Modified 2017-08-26T09:13:00

Description

Cyrus IMAP before 3.0.3 allows remote authenticated users to write to arbitrary files via a crafted (1) SYNCAPPLY, (2) SYNCGET or (3) SYNCRESTORE command.