RHEL 7 : cyrus-imapd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cyrus-imapd: Out of bounds heap read in indexurlfetch CVE-2015-8076 - cyrus-imapd: lmtpd component create...

EulerOS 2.0 SP1 : cyrus-imapd (EulerOS-SA-2016-1040)

According to the versions of the cyrus-imapd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to...

Cyrus IMAP index_urlfetch Information Disclosure Vulnerability

Cyrus IMAP Server is an e-mail server developed at Carnegie Mellon University. A security vulnerability exists in the function indexurlfetch in Cyrus IMAP versions 2.3.x-2.3.19, 2.4.x-2.4.18, 2.5.x-2.5.4 index.c. A remote attacker can exploit this vulnerability to obtain sensitive information by...

Cyrus IMAP index_urlfetch integer overflow vulnerability (CNVD-2015-07902)

Cyrus IMAP Server is an e-mail server developed at Carnegie Mellon University. An integer overflow vulnerability exists in the function indexurlfetch in Cyrus IMAP versions 2.3.19, 2.4.18, and 2.5.6 of imap/index.c, which can be exploited by a remote attacker to perform an illegal operation via a...

Cyrus IMAP index_urlfetch整数溢出漏洞（CNVD-2015-07902）

No description provided by source...

Cyrus IMAP index_urlfetch信息泄露漏洞

受影响系统： cyrus Cyrus IMAP Server 2.5.x-2.5.4 cyrus Cyrus IMAP Server 2.4.x-2.4.18 cyrus Cyrus IMAP Server 2.3.x-2.3.19 漏洞详情： CVECAN ID: CVE-2015-8076 Cyrus IMAP服务器是卡耐基梅隆大学开发的电子邮件服务器。 Cyrus IMAP 2.3.x-2.3.19, 2.4.x-2.4.18, 2.5.x-2.5.4...

CVE-2015-8078

Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the sectionoffset variable. NOTE: this vulnerability exists because of an incomplete fix for...

Heap overflow

The indexurlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive information or possibly have unspecified other impact via vectors related to the urlfetch range, which triggers an out-of-bounds heap read...

Integer overflow

Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the startoctet variable. NOTE: this vulnerability exists because of an incomplete fix for...

Integer overflow

Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the sectionoffset variable. NOTE: this vulnerability exists because of an incomplete fix for...

CVE-2015-8076

The indexurlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive information or possibly have unspecified other impact via vectors related to the urlfetch range, which triggers an out-of-bounds heap read...

UBUNTU-CVE-2015-8077

Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the startoctet variable. NOTE: this vulnerability exists because of an incomplete fix for...

CVE-2015-8076

CVE-2015-8076 affects Cyrus IMAPd (Cyrus IMAP) where the index_urlfetch function in index.c is vulnerable to an out-of-bounds heap read via the urlfetch range. Affected are Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, and 2.5.x before 2.5.4. Public references (OpenSUSE, Red Hat, OpenVAS n...

CVE-2015-8077

CVE-2015-8077 is a Cyrus IMAP vulnerability affecting 2.3.19, 2.4.18, and 2.5.6 where an integer overflow in index_urlfetch (imap/index.c) can be triggered via urlfetch range checks and the start_octet, with impact described as unspecified. The issue is linked to an incomplete fix for CVE-2015-80...

openSUSE Security Update : cyrus-imapd (openSUSE-2015-828)

The cyrus-imapd package was updated to fix two security issues. - CVE-2015-8077: Integer overflow in range checks bnc954200 - CVE-2015-8078: Integer overflow in indexurlfetch bnc954201 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...