13 matches found
openSUSE Security Update : cyrus-imapd (openSUSE-SU-2011:0800-1)
cyrus-imapd recognized commands before switching to an encrypted channel via STARTTLS. Attackers could potentially exploit that to inject plain text commands CVE-2011-1926. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
openSUSE Security Update : cyrus-imapd (openSUSE-SU-2011:1170-1)
An authentication bypass CVE-2011-3372 and a DoS vulnerability CVE-2011-3481 have been fixed in the Cyrus IMAPd nntpd. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update cyrus-imapd-5240. The tex...
SLES11: Security update for Cyrus IMAPD
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: cyrus-imapd perl-Cyrus-IMAP perl-Cyrus-SIEVE-managesieve More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked ...
SLES10: Security update for Cyrus IMAPD
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: cyrus-imapd cyrus-imapd-devel perl-Cyrus-IMAP perl-Cyrus-SIEVE-managesieve More details may also be found by searching for the SuSE Enterprise Server 10 patc...
SLES10: Security update for Cyrus IMAPD
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: cyrus-imapd cyrus-imapd-devel perl-Cyrus-IMAP perl-Cyrus-SIEVE-managesieve More details may also be found by searching for the SuSE Enterprise Server 10 patc...
cyrus-impad: CMU sieve buffer overflows
Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, as derived from Cyrus libsieve, allow context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted SIEVE script, as demonstrated by...
Fedora Core 11 FEDORA-2009-9417 (cyrus-imapd)
The remote host is missing an update to cyrus-imapd announced via advisory FEDORA-2009-9417. OpenVAS Vulnerability Test $Id: fcore20099417.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9417 cyrus-imapd Authors: Thomas Reinke Copyright: Copyright c...
CVE-2002-2253
CVE-2002-2253 affects Cyrus Sieve / libSieve 2.1.2 and earlier. The issue arises from multiple buffer overflows in code handling (1) long header names, (2) long IMAP flags, and (3) a script generating many errors that overflow the error string. This allows remote attackers to execute arbitrary co...
CVE-2002-2253
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via 1 a long header name, 2 a long IMAP flag, or 3 a script that generates a large number of errors that overflow the resulting error string...
CVE-2002-2253
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via 1 a long header name, 2 a long IMAP flag, or 3 a script that generates a large number of errors that overflow the resulting error string...
CVE-2002-2253
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via 1 a long header name, 2 a long IMAP flag, or 3 a script that generates a large number of errors that overflow the resulting error string...
Cyrus Sieve / libSieve buffer overflow
problem ------- Cyrus' Sieve implementation contains a couple of classic string based buffer overflows in script parsing code. Anyone who can execute Sieve scripts can exploit these bugs. Versions up to libSieve 2.1.2 and Cyrus IMAP 2.1.10 are affected. Note that with Cyrus IMAP server exploiting...
Buffer overflow in Cyrus Sieve
Buffer overflow on error messsage generation...