DEBIAN-CVE-2008-5006

smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service NULL pointer dereference and application crash by responding to the QUIT command with a close of the TCP connection instead of the expected 221 response code...

CVE-2008-5006

smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service NULL pointer dereference and application crash by responding to the QUIT command with a close of the TCP connection instead of the expected 221 response code...

CVE-2008-5006

CVE-2008-5006 affects the UW IMAP toolkit’s c-client library (2007b) where smtp.c can trigger a NULL pointer dereference in remote SMTP interactions when a server responds to QUIT with a close instead of 221, causing a denial of service. Public listings consolidate this with related UW IMAP CVEs ...

CVE-2008-5006

smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service NULL pointer dereference and application crash by responding to the QUIT command with a close of the TCP connection instead of the expected 221 response code...

SuSE 10 Security Update : OpenLDAP 2 (ZYPP Patch Number 5511)

This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...

[SECURITY] Fedora 8 Update: libsilc-1.0.2-6.fc8

SILC Client Library libraries for SILC clients...

[SECURITY] Fedora 7 Update: libsilc-1.0.2-6.fc7

SILC Client Library libraries for SILC clients...

CVE-2002-2325

The c-client library in Internet Message Access Protocol IMAP dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service client crash via a MIME-encoded email with Content-Type header containing an empty boundary field...

CVE-2002-2325

The CVE-2002-2325 entry concerns the c-client library used by IMAP (as in Pine 4.20–4.44). It describes a denial of service where a MIME-encoded email with a Content-Type header containing an empty boundary field can crash the client. The vulnerability is tied to the software versions mentioned (...

CVE-2003-1331

Stack-based buffer overflow in the mysqlrealconnect function in the MySql client library libmysqlclient 4.0.13 and earlier allows local users to execute arbitrary code via a long socket name, a different vulnerability than CVE-2001-1453...

Neon LibNeon非ASCII字符URI数据远程拒绝服务漏洞

Neon LibNeon存在远程拒绝服务问题。 Neon LibNeon当处理包含非ASCII字符的URI数据时存在漏洞，攻击者可以利用漏洞使使用此库的应用程序崩溃，造成拒绝服务攻击。 Neon Client Library 0.26.2 Neon Client Library 0.26.1 Neon Client Library 0.26 MandrakeSoft Linux Mandrake 2007.0 x8664 MandrakeSoft Linux Mandrake 2007.0 Mandriva Linux可参考如下公告：...

CVE-2006-5717

Multiple cross-site scripting XSS vulnerabilities in Zend Google Data Client Library ZendGData Preview 0.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in 1 basedemo.php and 2 calenderdemo.php in samples/, and other unspecified files...

Multiple XSS Vulnerabilities in Zend Google Data Client Library Preview 0.2.0

Armorize Technologies Security Advisory Advisory No: Armorize-ADV-2006-0008 Status: Partial Date: 2006/11/01 Summary: Armorize-ADV-2006-0008 discloses multiple cross-site scripting vulnerabilities that are found in the sample codes of Zend Google Data Client Library...

Design/Logic Flaw

The c-client library 2000, 2001, or 2004 for PHP before 4.4.4 and 5.x before 5.1.5 do not check the 1 safemode or 2 openbasedir functions, and when used in applications that accept user-controlled input for the mailbox argument to the imapopen function, allow remote attackers to obtain access to ...

CVE-2006-1017

The c-client library 2000, 2001, or 2004 for PHP before 4.4.4 and 5.x before 5.1.5 do not check the 1 safemode or 2 openbasedir functions, and when used in applications that accept user-controlled input for the mailbox argument to the imapopen function, allow remote attackers to obtain access to ...

CVE-2006-1017

The c-client library 2000, 2001, or 2004 for PHP before 4.4.4 and 5.x before 5.1.5 do not check the 1 safemode or 2 openbasedir functions, and when used in applications that accept user-controlled input for the mailbox argument to the imapopen function, allow remote attackers to obtain access to ...

CVE-2006-1017

CVE-2006-1017 corresponds to issues in the PHP c-client/imap handling. The connected OpenVAS entry references “PHP

(PHP) imap functions bypass safemode and open_basedir restrictions

Vulnerability in c-client library tested with versions 2000,2001,2004, mailopen could be used to open stream to local files. For php and imap module imapopen allow to bypass safemode and openbasedir restrictions. Use imapbody or others to view a file and imaplist to recursively list a directory...

cUrl / licurl HTTP client library buffer overflow

Off-by-one and off-by-two overflows in URL parsing...

RHEL 2.1 / 3 : imap (RHSA-2005:850)

An updated imap package that fixes a buffer overflow issue is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The imap package provides server daemons for both the IMAP Internet Message Access Protocol and POP Post Office Protoco...