Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 up to and including 2.2.8, with the imapmagicplus option enabled, allows remote malicious users to execute arbitrary code via a long (1) PROXY or (2) LOGIN command, a different vulnerability than CVE-2004-1015.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
carnegie_mellon_university cyrus_imap_server 2.2.6 |
||
carnegie_mellon_university cyrus_imap_server 2.1.10 |
||
conectiva linux 9.0 |
||
carnegie_mellon_university cyrus_imap_server 2.2.8 |
||
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha |
||
carnegie_mellon_university cyrus_imap_server 2.1.9 |
||
carnegie_mellon_university cyrus_imap_server 2.2.5 |
||
carnegie_mellon_university cyrus_imap_server 2.2.2_beta |
||
openpkg openpkg current |
||
carnegie_mellon_university cyrus_imap_server 2.1.16 |
||
carnegie_mellon_university cyrus_imap_server 2.2.7 |
||
carnegie_mellon_university cyrus_imap_server 2.2.3 |
||
conectiva linux 10.0 |
||
carnegie_mellon_university cyrus_imap_server 2.2.1_beta |
||
carnegie_mellon_university cyrus_imap_server 2.1.7 |
||
carnegie_mellon_university cyrus_imap_server 2.2.4 |
||
redhat fedora_core core_2.0 |
||
trustix secure_linux 2.0 |
||
ubuntu ubuntu_linux 4.1 |
||
trustix secure_linux 2.1 |
||
trustix secure_linux 2.2 |
||
redhat fedora_core core_3.0 |
Vulmon