Lucene search
Ubuntu.comUB:CVE-2004-1012HistoryJan 10, 2005 - 12:00 a.m.
CVE-2004-1012
2005-01-1000:00:00
ubuntu.com
ubuntu.com
4
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.085 Low
EPSS
Percentile
94.5%
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and
earlier allows remote authenticated users to execute arbitrary code via a
certain command (“body[p”) that is treated as a different command
(“body.peek”) and causes an index increment error that leads to an
out-of-bounds memory corruption.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | cyrus21-imapd | < 2.1.18-2ubuntu2 | UNKNOWN |
| ubuntu | 6.10 | noarch | cyrus21-imapd | < 2.1.18-2ubuntu2 | UNKNOWN |
| ubuntu | 7.04 | noarch | cyrus21-imapd | < 2.1.18-2ubuntu2 | UNKNOWN |
Related
cvelist
cvelist
CVE-2004-1012
2004-12-01 05:00:00
cve
cve
CVE-2004-1012
2005-01-10 05:00:00
debiancve
debiancve
CVE-2004-1012
2005-01-10 05:00:00
nessus
nessus
FreeBSD : Cyrus IMAPd -- PARTIAL command out of bounds memory corruption (114d70f3-3d16-11d9-8818-008088034841)
2005-07-13 00:00:00
Debian DSA-597-1 : cyrus-imapd - buffer overflow
2004-11-25 00:00:00
Ubuntu 4.10 : cyrus21-imapd vulnerabilities (USN-31-1)
2006-01-15 00:00:00
openvas
openvas
FreeBSD Ports: cyrus-imapd
2008-09-04 00:00:00
FreeBSD Ports: cyrus-imapd
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-31-1)
2022-08-26 00:00:00
freebsd
freebsd
Cyrus IMAPd -- PARTIAL command out of bounds memory corruption
2004-11-06 00:00:00
nvd
nvd
CVE-2004-1012
2005-01-10 05:00:00
debian
debian
[SECURITY] [DSA 597-1] New cyrus-imapd packages fix arbitrary code execution
2004-11-25 09:34:48
[SECURITY] [DSA 597-1] New cyrus-imapd packages fix arbitrary code execution
2004-11-25 09:34:48
osv
osv
cyrus-imapd - buffer overflow
2004-11-25 00:00:00
ubuntu
ubuntu
cyrus21-imapd vulnerabilities
2004-11-24 00:00:00
suse
suse
remote command execution in cyrus-imapd
2004-12-03 13:37:30
altlinux
altlinux
Security fix for the ALT Linux 8 package cyrus-imapd version 2.2.9-alt1
2004-11-23 00:00:00
securityvulns
securityvulns
Advisory 15/2004: Cyrus IMAP Server multiple remote vulnerabilities
2004-11-24 00:00:00
gentoo
gentoo
Cyrus IMAP Server: Multiple remote vulnerabilities
2004-11-25 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.085 Low
EPSS
Percentile
94.5%
Related for UB:CVE-2004-1012