Lucene search
RootSSV:90004HistoryDec 04, 2015 - 12:00 a.m.
Cyrus IMAP index_urlfetch信息泄露漏洞
2015-12-0400:00:00
Root
www.seebug.org
24
0.018 Low
EPSS
Percentile
88.1%
受影响系统:
cyrus Cyrus IMAP Server 2.5.x-2.5.4
cyrus Cyrus IMAP Server 2.4.x-2.4.18
cyrus Cyrus IMAP Server 2.3.x-2.3.19
漏洞详情:
CVE(CAN) ID: CVE-2015-8076
Cyrus IMAP服务器是卡耐基梅隆大学开发的电子邮件服务器。
Cyrus IMAP 2.3.x-2.3.19, 2.4.x-2.4.18, 2.5.x-2.5.4 版本,index.c中的函数index_urlfetch存在安全漏洞,远程攻击者通过urlfetch范围检查触发越界堆读,利用此漏洞可获取敏感信息。
Related
cve
cve
nessus
nessus
Fedora 23 : cyrus-imapd-2.4.18-1.fc23 (2015-e7712d6c32)
2016-03-04 00:00:00
Fedora 22 : cyrus-imapd-2.4.18-1.fc22 (2015-8d4b507cb0)
2016-03-04 00:00:00
EulerOS 2.0 SP1 : cyrus-imapd (EulerOS-SA-2016-1040)
2017-05-01 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: cyrus-imapd-2.4.18-1.fc23
2015-11-17 15:57:29
[SECURITY] Fedora 21 Update: cyrus-imapd-2.4.18-1.fc21
2015-11-20 23:29:13
[SECURITY] Fedora 22 Update: cyrus-imapd-2.4.18-1.fc22
2015-11-17 18:32:37
nvd
nvd
cvelist
cvelist
ubuntucve
ubuntucve
openvas
openvas
Fedora Update for cyrus-imapd FEDORA-2015-8
2015-11-18 00:00:00
Huawei EulerOS: Security Advisory for cyrus-imapd (EulerOS-SA-2016-1040)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1457-1)
2021-04-19 00:00:00
prion
prion
Heap overflow
2015-12-03 20:59:00
Integer overflow
2015-12-03 20:59:00
Integer overflow
2015-12-03 20:59:00
suse
suse
Security update for cyrus-imapd (important)
2016-06-01 12:07:51
Security update for cyrus-imapd (important)
2016-05-31 22:07:35