FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. VID 5ed2f96b-33b7-4863-8c6b-540d22344424 OpenVAS Vulnerability Test $ Description: Auto generated from VID 5ed2f96b-33b7-4863-8c6b-540d22344424 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. VID 69a20ce4-dfee-11dd-a765-0030843d3802 OpenVAS Vulnerability Test $ Description: Auto generated from VID 69a20ce4-dfee-11dd-a765-0030843d3802 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. VID a6713190-dfea-11dd-a765-0030843d3802 OpenVAS Vulnerability Test $ Description: Auto generated from VID a6713190-dfea-11dd-a765-0030843d3802 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD : imap-uw -- local buffer overflow vulnerabilities (a6713190-dfea-11dd-a765-0030843d3802)

SANS reports : University of Washington 'tmail' and 'dmail' are mail deliver agents. 'tmail' and 'dmail' are exposed to local buffer overflow issues because they fail to perform adequate boundary checks on user-supplied data. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

FreeBSD : imap-uw -- imap c-client buffer overflow (69a20ce4-dfee-11dd-a765-0030843d3802)

SANS reports : The University of Washington IMAP library is a library implementing the IMAP mail protocol. University of Washington IMAP is exposed to a buffer overflow issue that occurs due to a boundary error within the rfc822outputchar function in the c-client library. The University of...

imap-uw -- local buffer overflow vulnerabilities

SANS reports: University of Washington "tmail" and "dmail" are mail deliver agents. "tmail" and "dmail" are exposed to local buffer overflow issues because they fail to perform adequate boundary checks on user-supplied data...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. VID 1f6e2ade-35c2-11da-811d-0050bf27ba24 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. VID d1bbc235-c0c9-45cd-8d2d-c1b8fd22e616 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: imap-uw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD : imap-uw -- mailbox name handling remote buffer vulnerability (1f6e2ade-35c2-11da-811d-0050bf27ba24)

FrSIRT reports : A vulnerability has been identified in UW-IMAP, which could be exploited by remote attackers to execute arbitrary commands. This flaw is due to a stack overflow error in the 'mailvalidnetparsework' src/c-client/mail.c function that does not properly handle specially crafted mailb...

FreeBSD : imap-uw -- authentication bypass when CRAM-MD5 is enabled (d1bbc235-c0c9-45cd-8d2d-c1b8fd22e616)

The CRAM-MD5 authentication support of the University of Washington IMAP and POP3 servers contains a vulnerability that may allow an attacker to bypass authentication and impersonate arbitrary users. Only installations with CRAM-MD5 support configured are affected. %NASLMINLEVEL 70300 C Tenable...

imap-uw IMAP server CRAM-MD5 unauthorized access

It's possible to access mailboxes of different users...

File system access in imap-uw

By design it's possible to access any file readable by user's account...

Buffer overflow in imap-uw

BODY command with oversized argument causes buffer overflow...

CVE-2000-1197

CVE-2000-1197 affects POP2/POP3 server (pop3d) in the imap-uw IMAP package on FreeBSD and other OSes. The vulnerability arises from the server creating lock files with predictable names, enabling local users to cause a denial of service by locking other users’ mail boxes (no exploitation details ...

FreeBSD-SA-00:15.imap-uw

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:15 Security Advisory FreeBSD, Inc. Topic: imap-uw allows local users to deny service to any mailbox Category: ports Module: imap-uw Announced: 2000-04-24 Credits: Alex...