CVE-1999-0005

Arbitrary command execution via IMAP buffer overflow in authenticate command...

EUVD-2000-0086

Malware in sbrugna...

EUVD-2014-7144

Malware in sbrugna...

EUVD-2007-4988

Malware in sbrugna...

ROS-2-2070

2.2070 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

SUSE-SU-2021:3492-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. bsc1190069...

OPENSUSE-SU-2021:0516-1 Security update for isync

This update for isync fixes the following issues: - isync was updated to version 1.3.5 - CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB boo1182488...

OPENSUSE-SU-2021:0208-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird was updated to 78.7.0 ESR MFSA 2021-05, bsc1181414 CVE-2021-23953: Fixed a Cross-origin information leakage via redirected PDF requests CVE-2021-23954: Fixed a type confusion when using logical assignment operato...

EUVD-2020-7089

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data e.g., from a man-in-the-middle attacker and evaluates it in a TLS context, aka "response injection."...

Fedora 24 : roundcubemail-1.1.5-1.fc24 (2016-aff691237e)

Release 1.1.5 Plugin API: Added html2text hook Plugin API: Added addressbookexport hook Fix missing emoticons on html-to-text conversion Fix random 'access to this resource is secured against CSRF' message at logout 4956 Fix missing language name in 'Add to Dictionary' request in HTML mode 4951...

MGASA-2014-0450 Updated getmail package fixes security vulnerabilities

The IMAP-over-SSL implementation in getmail 4.0.0 through 4.43.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof IMAP servers and obtain sensitive information via a crafted certificate CVE-2014-7273. The IMAP-over-SSL implementation in getmai...

imap security update

2002d-15 - Backport patch for buffer overflows in dmail and tmail from upstream version 2007d CVE-2008-5005, 469667...

Hydra: IMAP

This plugin runs Hydra to find IMAP accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...

CVE-2003-0167

Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service crash and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than...

[SECURITY] [DSA 215-1] New cyrus-imapd packages fix remote command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 215-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23th, 2002 http://www.debian.org/security/faq -...

Переполнение буфера в Mercur

Переполнения буфера в различных командах IMAP, POP3...