13 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8076
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The indexurlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive...
RHEL 7 : cyrus-imapd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cyrus-imapd: Out of bounds heap read in indexurlfetch CVE-2015-8076 - cyrus-imapd: lmtpd component create...
RHEL 6 : cyrus-imapd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - cyrus-imapd: Out of bounds heap read in indexurlfetch CVE-2015-8076 Note that Nessus has not tested for this issue...
SUSE: Security Advisory (SUSE-SU-2016:1457-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for cyrus-imapd (EulerOS-SA-2016-1040)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 23 : cyrus-imapd-2.4.18-1.fc23 (2015-e7712d6c32)
Update to 2.4.18, rhbz1267871 and rhbz1267878 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Cyrus IMAP index_urlfetch信息泄露漏洞
受影响系统: cyrus Cyrus IMAP Server 2.5.x-2.5.4 cyrus Cyrus IMAP Server 2.4.x-2.4.18 cyrus Cyrus IMAP Server 2.3.x-2.3.19 漏洞详情: CVECAN ID: CVE-2015-8076 Cyrus IMAP服务器是卡耐基梅隆大学开发的电子邮件服务器。 Cyrus IMAP 2.3.x-2.3.19, 2.4.x-2.4.18, 2.5.x-2.5.4...
CVE-2015-8078
Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the sectionoffset variable. NOTE: this vulnerability exists because of an incomplete fix for...
Integer overflow
Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the startoctet variable. NOTE: this vulnerability exists because of an incomplete fix for...
Integer overflow
Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the sectionoffset variable. NOTE: this vulnerability exists because of an incomplete fix for...
CVE-2015-8076
CVE-2015-8076 affects Cyrus IMAPd (Cyrus IMAP) where the index_urlfetch function in index.c is vulnerable to an out-of-bounds heap read via the urlfetch range. Affected are Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, and 2.5.x before 2.5.4. Public references (OpenSUSE, Red Hat, OpenVAS n...
CVE-2015-8077
CVE-2015-8077 is a Cyrus IMAP vulnerability affecting 2.3.19, 2.4.18, and 2.5.6 where an integer overflow in index_urlfetch (imap/index.c) can be triggered via urlfetch range checks and the start_octet, with impact described as unspecified. The issue is linked to an incomplete fix for CVE-2015-80...
Fedora Update for cyrus-imapd FEDORA-2015-8
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...