659 matches found
Cyrus IMAPd -- APPEND command uses undefined programming construct
To support MULTIAPPENDS the cmdappend handler uses the global stage array. This array is one of the things that gets destructed when the fatal function is triggered. When the Cyrus IMAP code adds new entries to this array this is done with the help of the postfix increment operator in combination...
Cyrus IMAPd -- PARTIAL command out of bounds memory corruption
Due to a bug within the argument parser of the partial command an argument like "bodyp" will be wrongly detected as "body.peek". Because of this the bufferposition gets increased by 10 instead of 5 and could therefore point outside the allocated memory buffer for the rest of the parsing process. ...
Cyrus IMAPd -- IMAPMAGICPLUS preauthentification overflow
When the option imapmagicplus is activated on a server the PROXY and LOGIN commands suffer a standard stack overflow, because the username is not checked against a maximum length when it is copied into a temporary stack buffer. This bug is especially dangerous because it can be triggered before a...
GLSA-200408-19 : courier-imap: Remote Format String Vulnerability
The remote host is affected by the vulnerability described in GLSA-200408-19 courier-imap: Remote Format String Vulnerability There is a format string vulnerability in the authdebug function which can be exploited remotely, potentially leading to arbitrary code execution as the user running the...
UoW imapd (UW-IMAP) AUTHENTICATE Command Remote Overflow
Binary data 1101.prm...
UoW imapd (UW-IMAP) BODY Request Remote Overflow
Binary data 1088.prm...
UoW imapd (UW-IMAP) v12 Multiple Command Remote Overflows
Binary data 1087.prm...
UoW imapd (UW-IMAP) v12.264 or v10.24 Multiple Command Remote Overflows.
Binary data 1093.prm...
SUSE-SA:2002:048: cyrus-imapd
The remote host is missing the patch for the advisory SUSE-SA:2002:048 cyrus-imapd. The cyrus imapd contains a buffer overflow which could be exploited by remote attackers prior to logging in. Attackers could generate oversized error messages and overflow buffers inside imapd. Additionally to thi...
CVE-2003-1322
Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long 1 EXAMINE, 2 DELETE, 3 SUBSCRIBE, 4 RENAME, 5 UNSUBSCRIBE, 6 LIST, 7 LSUB, 8 STATUS, 9 LOGIN, 10 CREATE, or 11 SELECT command...
Cyrus IMAPD 1.41.5.192.0.122.0.162.1.92.1.10 - Pre-Login Heap Corruption
Cyrus IMAPD 1.41.5.192.0.122.0.162.1.92.1.10 - Pre-Login Heap Corruption source: https://www.securityfocus.com/bid/6298/info Cyrus IMAPD is a freely available, open source Interactive Mail Access Protocol IMAP daemon. It is available for Unix and Linux operating systems. It has been reported that...
Cyrus IMAPD 1.4/1.5.19/2.0.12/2.0.16/2.1.9/2.1.10 - Pre-Login Heap Corruption
source: https://www.securityfocus.com/bid/6298/info Cyrus IMAPD is a freely available, open source Interactive Mail Access Protocol IMAP daemon. It is available for Unix and Linux operating systems. It has been reported that Cyrus IMAPD does not sufficiently handle overly long strings. In some...
UoW IMAPd Server 10.23412.264 - Remote Buffer Overflow
UoW IMAPd Server 10.23412.264 - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/1110/info A buffer overflow exists in imapd. The vulnerability exists in the list command. By supplying a long, well-crafted string as the second argument to the list command, it becomes possible t...
UoW IMAPd Server 10.234/12.264 - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/1110/info A buffer overflow exists in imapd. The vulnerability exists in the list command. By supplying a long, well-crafted string as the second argument to the list command, it becomes possible to execute code on the machine. Executing the list comma...
WU-IMAPd 20002001 - Partial Mailbox Attribute Remote Buffer Overflow (2)
WU-IMAPd 20002001 - Partial Mailbox Attribute Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/4713/info Wu-imapd is vulnerable to a buffer overflow condition. This has been reported to occur when a valid user requests partial mailbox attributes. Exploitation may result in th...
WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/4713/info Wu-imapd is vulnerable to a buffer overflow condition. This has been reported to occur when a valid user requests partial mailbox attributes. Exploitation may result in the execution of arbitrary code as the server process. An attacker may al...
CVE-2001-0691
Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without shell access to execute code as themselves in certain configurations...
CVE-1999-1445
Vulnerability details available for CVE-1999-1445: affected software includes imapd and ipop3d running on Slackware 3.4 and 3.3 with shadowing enabled (and possibly other OSes). The issue allows remote attackers to trigger a core dump by sending a short sequence of USER and PASS commands that do ...
CVE-2001-0691
Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without shell access to execute code as themselves in certain configurations...
CVE-2001-0691
UW-IMAP imapd (Washington University) v2000a–2000c contains buffer overflows that could allow a local user, after authentication, to execute code with that user’s privileges in certain configurations. Mandrake MDKSA-2001:054 notes these vulnerabilities and that updates are provided, but the exact...