MidnightBSD

Advisories for carnegie_mellon_university

CVE-2000-0956 MEDIUM

cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus-sasl 1.5.24
CVE-2001-1154 MEDIUM

Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 2.0.16
carnegie_mellon_university cyrus_imap_server 2.0.15
carnegie_mellon_university cyrus_imap_server 1.6.24
bsdi bsd_os 4.2
CVE-2002-1580 HIGH

Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a large length value that facilitates a buffer overflow attack, a different vulnerability than CVE-2002-1347.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 1.4
carnegie_mellon_university cyrus_imap_server 2.0.16
carnegie_mellon_university cyrus_imap_server 1.5.19
carnegie_mellon_university cyrus_imap_server 2.1.10
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.0.12
CVE-2004-1011 HIGH

Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long (1) PROXY or (2) LOGIN command, a different vulnerability than CVE-2004-1015.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha
carnegie_mellon_university cyrus_imap_server 2.2.4
redhat fedora_core core_2.0
conectiva linux 9.0
carnegie_mellon_university cyrus_imap_server 2.2.8
carnegie_mellon_university cyrus_imap_server 2.2.1_beta
openpkg openpkg current
conectiva linux 10.0
trustix secure_linux 2.0
carnegie_mellon_university cyrus_imap_server 2.1.7
carnegie_mellon_university cyrus_imap_server 2.2.3
carnegie_mellon_university cyrus_imap_server 2.2.5
trustix secure_linux 2.2
carnegie_mellon_university cyrus_imap_server 2.2.6
redhat fedora_core core_3.0
carnegie_mellon_university cyrus_imap_server 2.1.16
trustix secure_linux 2.1
carnegie_mellon_university cyrus_imap_server 2.2.7
carnegie_mellon_university cyrus_imap_server 2.1.10
ubuntu ubuntu_linux 4.1
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.2.2_beta
CVE-2004-1012 HIGH

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index increment error that leads to an out-of-bounds memory corruption.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha
carnegie_mellon_university cyrus_imap_server 2.2.4
redhat fedora_core core_2.0
conectiva linux 9.0
carnegie_mellon_university cyrus_imap_server 2.2.8
carnegie_mellon_university cyrus_imap_server 2.2.1_beta
openpkg openpkg current
conectiva linux 10.0
trustix secure_linux 2.0
carnegie_mellon_university cyrus_imap_server 2.1.7
carnegie_mellon_university cyrus_imap_server 2.2.3
carnegie_mellon_university cyrus_imap_server 2.2.5
trustix secure_linux 2.2
carnegie_mellon_university cyrus_imap_server 2.2.6
redhat fedora_core core_3.0
carnegie_mellon_university cyrus_imap_server 2.1.16
trustix secure_linux 2.1
carnegie_mellon_university cyrus_imap_server 2.2.7
carnegie_mellon_university cyrus_imap_server 2.1.10
ubuntu ubuntu_linux 4.1
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.2.2_beta
CVE-2004-1013 HIGH

The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha
carnegie_mellon_university cyrus_imap_server 2.2.4
redhat fedora_core core_2.0
conectiva linux 9.0
carnegie_mellon_university cyrus_imap_server 2.2.8
carnegie_mellon_university cyrus_imap_server 2.2.1_beta
openpkg openpkg current
conectiva linux 10.0
trustix secure_linux 2.0
carnegie_mellon_university cyrus_imap_server 2.1.7
carnegie_mellon_university cyrus_imap_server 2.2.3
carnegie_mellon_university cyrus_imap_server 2.2.5
trustix secure_linux 2.2
carnegie_mellon_university cyrus_imap_server 2.2.6
redhat fedora_core core_3.0
carnegie_mellon_university cyrus_imap_server 2.1.16
trustix secure_linux 2.1
carnegie_mellon_university cyrus_imap_server 2.2.7
carnegie_mellon_university cyrus_imap_server 2.1.10
ubuntu ubuntu_linux 4.1
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.2.2_beta
CVE-2004-1015 HIGH

Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2004-1011.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 1.4
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha
carnegie_mellon_university cyrus_imap_server 2.2.9
carnegie_mellon_university cyrus_imap_server 2.2.4
redhat fedora_core core_2.0
carnegie_mellon_university cyrus_imap_server 2.2.8
carnegie_mellon_university cyrus_imap_server 2.2.1_beta
carnegie_mellon_university cyrus_imap_server 2.1.7
carnegie_mellon_university cyrus_imap_server 2.2.3
carnegie_mellon_university cyrus_imap_server 2.2.5
carnegie_mellon_university cyrus_imap_server 2.2.6
carnegie_mellon_university cyrus_imap_server 2.0.16
redhat fedora_core core_3.0
carnegie_mellon_university cyrus_imap_server 2.1.16
carnegie_mellon_university cyrus_imap_server 1.5.19
carnegie_mellon_university cyrus_imap_server 2.2.7
carnegie_mellon_university cyrus_imap_server 2.1.10
ubuntu ubuntu_linux 4.1
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.2.2_beta
carnegie_mellon_university cyrus_imap_server 2.0.12
CVE-2004-1067 HIGH

Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university cyrus_imap_server 1.4
carnegie_mellon_university cyrus_imap_server 2.2.0_alpha
carnegie_mellon_university cyrus_imap_server 2.2.9
carnegie_mellon_university cyrus_imap_server 2.2.4
redhat fedora_core core_2.0
carnegie_mellon_university cyrus_imap_server 2.2.8
carnegie_mellon_university cyrus_imap_server 2.2.1_beta
carnegie_mellon_university cyrus_imap_server 2.1.7
carnegie_mellon_university cyrus_imap_server 2.2.3
carnegie_mellon_university cyrus_imap_server 2.2.5
carnegie_mellon_university cyrus_imap_server 2.2.6
carnegie_mellon_university cyrus_imap_server 2.0.16
redhat fedora_core core_3.0
carnegie_mellon_university cyrus_imap_server 2.1.16
carnegie_mellon_university cyrus_imap_server 1.5.19
carnegie_mellon_university cyrus_imap_server 2.2.7
carnegie_mellon_university cyrus_imap_server 2.1.10
ubuntu ubuntu_linux 4.1
carnegie_mellon_university cyrus_imap_server 2.1.9
carnegie_mellon_university cyrus_imap_server 2.2.2_beta
carnegie_mellon_university cyrus_imap_server 2.0.12
CVE-2006-0250 MEDIUM

Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
carnegie_mellon_university snmptrapd 3.6
carnegie_mellon_university snmptrapd 3.7