Lucene search

UbuntuUSN-31-1

HistoryNov 24, 2004 - 12:00 a.m.

cyrus21-imapd vulnerabilities

2004-11-2400:00:00

ubuntu.com

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.107 Low

EPSS

Percentile

95.0%

JSON

Releases

Ubuntu 4.10

Details

Stefan Esser discovered several buffer overflows in the Cyrus IMAP
server. Due to insufficient checking within the argument parser of
the “partial” and “fetch” commands, an argument like “body[p” was
detected as “body.peek”. This could cause a buffer overflow which
could be exploited to execute arbitrary attacker-supplied code.

This update also fixes an exploitable buffer overflow that could be
triggered in situations when memory allocation fails (i. e. when no
free memory is available any more).

Both vulnerabilities can lead to privilege escalation to root.

OSVersionArchitecturePackageVersionFilename
Ubuntu4.10noarchcyrus21-imapd< *UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	4.10	noarch	cyrus21-imapd	< *	UNKNOWN

References

security.e-matters.de/advisories/152004.html

ubuntu.com/security/CVE-2004-1012

ubuntu.com/security/CVE-2004-1013

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.107 Low

EPSS

Percentile

95.0%

JSON

Related for USN-31-1