CVE-2004-1012

🗓️ 01 Dec 2004 05:00:00Reported by Debian Security Bug TrackerType

debiancve

debiancve🔗 security-tracker.debian.org👁 27 Views

Cyrus IMAP Server vulnerability allows remote users to execute arbitrary code via command parsing error.

Reporter	Title	Published	Views	Family All 33
FreeBSD	Cyrus IMAPd -- PARTIAL command out of bounds memory corruption	6 Nov 200400:00	–	freebsd
ALT Linux	Security fix for the ALT Linux 8 package cyrus-imapd version 2.2.9-alt1	23 Nov 200400:00	–	altlinux
CVE	CAN-2004-1012	6 Aug 202409:53	–	cve
CVE	CVE-2004-1012	1 Dec 200405:00	–	cve
Cvelist	CVE-2004-1012	1 Dec 200405:00	–	cvelist
Tenable Nessus	Cyrus IMAP Server < 2.2.10 Multiple Remote Overflows	23 Nov 200400:00	–	nessus
Tenable Nessus	Debian DSA-597-1 : cyrus-imapd - buffer overflow	25 Nov 200400:00	–	nessus
Tenable Nessus	Fedora Core 3 : cyrus-imapd-2.2.10-1.fc3 (2004-487)	2 Dec 200400:00	–	nessus
Tenable Nessus	Fedora Core 2 : cyrus-imapd-2.2.10-1.fc2 (2004-489)	2 Dec 200400:00	–	nessus
Tenable Nessus	FreeBSD : Cyrus IMAPd -- PARTIAL command out of bounds memory corruption (114d70f3-3d16-11d9-8818-008088034841)	13 Jul 200500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	11	any	cyrus-imapd	1.5.19-20	cyrus-imapd_1.5.19-20_any.deb
Debian	12	any	cyrus-imapd	1.5.19-20	cyrus-imapd_1.5.19-20_any.deb
Debian	13	any	cyrus-imapd	1.5.19-20	cyrus-imapd_1.5.19-20_any.deb
Debian	14	any	cyrus-imapd	1.5.19-20	cyrus-imapd_1.5.19-20_any.deb
Debian	999	any	cyrus-imapd	1.5.19-20	cyrus-imapd_1.5.19-20_any.deb

01 Dec 2004 05:00Current

7.1High risk

Vulners AI Score7.1

CVSS 210

EPSS0.05951

cyrus imap server remote code execution memory corruption argument parser vulnerability cve-2004-1012