cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus-sasl | 1.5.24 |
Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 2.0.16 |
| carnegie_mellon_university | cyrus_imap_server | 2.0.15 |
| carnegie_mellon_university | cyrus_imap_server | 1.6.24 |
| bsdi | bsd_os | 4.2 |
Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a large length value that facilitates a buffer overflow attack, a different vulnerability than CVE-2002-1347.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 1.4 |
| carnegie_mellon_university | cyrus_imap_server | 2.0.16 |
| carnegie_mellon_university | cyrus_imap_server | 1.5.19 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.0.12 |
Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long (1) PROXY or (2) LOGIN command, a different vulnerability than CVE-2004-1015.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 2.2.0_alpha |
| carnegie_mellon_university | cyrus_imap_server | 2.2.4 |
| redhat | fedora_core | core_2.0 |
| conectiva | linux | 9.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.8 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.1_beta |
| openpkg | openpkg | current |
| conectiva | linux | 10.0 |
| trustix | secure_linux | 2.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.3 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.5 |
| trustix | secure_linux | 2.2 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.6 |
| redhat | fedora_core | core_3.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.16 |
| trustix | secure_linux | 2.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| ubuntu | ubuntu_linux | 4.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.2_beta |
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index increment error that leads to an out-of-bounds memory corruption.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 2.2.0_alpha |
| carnegie_mellon_university | cyrus_imap_server | 2.2.4 |
| redhat | fedora_core | core_2.0 |
| conectiva | linux | 9.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.8 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.1_beta |
| openpkg | openpkg | current |
| conectiva | linux | 10.0 |
| trustix | secure_linux | 2.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.3 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.5 |
| trustix | secure_linux | 2.2 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.6 |
| redhat | fedora_core | core_3.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.16 |
| trustix | secure_linux | 2.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| ubuntu | ubuntu_linux | 4.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.2_beta |
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 2.2.0_alpha |
| carnegie_mellon_university | cyrus_imap_server | 2.2.4 |
| redhat | fedora_core | core_2.0 |
| conectiva | linux | 9.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.8 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.1_beta |
| openpkg | openpkg | current |
| conectiva | linux | 10.0 |
| trustix | secure_linux | 2.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.3 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.5 |
| trustix | secure_linux | 2.2 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.6 |
| redhat | fedora_core | core_3.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.16 |
| trustix | secure_linux | 2.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| ubuntu | ubuntu_linux | 4.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.2_beta |
Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2004-1011.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 1.4 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.0_alpha |
| carnegie_mellon_university | cyrus_imap_server | 2.2.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.4 |
| redhat | fedora_core | core_2.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.8 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.1_beta |
| carnegie_mellon_university | cyrus_imap_server | 2.1.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.3 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.5 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.6 |
| carnegie_mellon_university | cyrus_imap_server | 2.0.16 |
| redhat | fedora_core | core_3.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.16 |
| carnegie_mellon_university | cyrus_imap_server | 1.5.19 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| ubuntu | ubuntu_linux | 4.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.2_beta |
| carnegie_mellon_university | cyrus_imap_server | 2.0.12 |
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | 1.4 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.0_alpha |
| carnegie_mellon_university | cyrus_imap_server | 2.2.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.4 |
| redhat | fedora_core | core_2.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.8 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.1_beta |
| carnegie_mellon_university | cyrus_imap_server | 2.1.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.3 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.5 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.6 |
| carnegie_mellon_university | cyrus_imap_server | 2.0.16 |
| redhat | fedora_core | core_3.0 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.16 |
| carnegie_mellon_university | cyrus_imap_server | 1.5.19 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.7 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.10 |
| ubuntu | ubuntu_linux | 4.1 |
| carnegie_mellon_university | cyrus_imap_server | 2.1.9 |
| carnegie_mellon_university | cyrus_imap_server | 2.2.2_beta |
| carnegie_mellon_university | cyrus_imap_server | 2.0.12 |
Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| carnegie_mellon_university | snmptrapd | 3.6 |
| carnegie_mellon_university | snmptrapd | 3.7 |