32 matches found
EulerOS 2.0 SP8 : dovecot (EulerOS-SA-2019-2071)
According to the version of the dovecot packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
Remote code execution
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
CVE-2019-11500
CVE-2019-11500 affects Dovecot (and Pigeonhole) where protocol processing mishandles NULL bytes, enabling out-of-bounds writes and remote code execution. Affected: Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2; Pigeonhole before 0.5.7.2. Root cause: improper NULL-byte handling in IMAP/ManageSi...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
UBUNTU-CVE-2019-11500
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution...
PT-2019-3225 · Dovecot +5 · Dovecot +6
Name of the Vulnerable Software and Affected Versions: Dovecot versions prior to 2.2.36.4 Dovecot versions prior to 2.3.7.2 Pigeonhole versions prior to 0.5.7.2 Description: The issue is related to the mishandling of '0' characters in protocol processing, which can lead to out-of-bounds writes an...
Firebird XDR Operation Request Handling Denial of Service (CVE-2008-0387)
There exists a null-dereference overflow vulnerability in Firebird database project. The flaw resides in the External Data Representation XDR protocol processing routines. A remote unauthenticated attacker may exploit this vulnerability by sending crafted message to the target server. Successful...