Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

imap toolkit vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2008-5006
smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service (NULL pointer dereference and application crash) by responding to the QUIT command with a close of the TCP connection instead of the expected 221 ...
University Of Washington Imap Toolkit 2007b
10
CVSSv2
CVE-2008-5005
Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and previous versions, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the...
University Of Washington Alpine 0.82University Of Washington Alpine 0.999999University Of Washington Alpine 0.98University Of Washington Alpine 1.00University Of Washington Alpine 1.10University Of Washington Alpine 0.99University Of Washington Alpine 0.81University Of Washington Imap Toolkit 2003University Of Washington Imap Toolkit 2005University Of Washington Imap Toolkit 2002University Of Washington Alpine 2.00University Of Washington Imap Toolkit 2007cUniversity Of Washington Alpine 0.80University Of Washington Alpine 0.99999University Of Washington Alpine 0.999University Of Washington Alpine 0.9999University Of Washington Imap Toolkit 2006University Of Washington Imap Toolkit 2004University Of Washington Imap Toolkit 2007University Of Washington Alpine 0.83
4.3
CVSSv2
CVE-2008-5514
Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent malicious users to cause a denial of service (...
University Of Washington Imap 2006hUniversity Of Washington Imap 2006gUniversity Of Washington Imap 2006University Of Washington Imap 2004University Of Washington Imap 2004gUniversity Of Washington Imap 2002University Of Washington Imap 2001University Of Washington Imap 2001aUniversity Of Washington Imap 2000University Of Washington Imap 2006jUniversity Of Washington Imap 2006iUniversity Of Washington Imap 2006aUniversity Of Washington Imap 2007University Of Washington Imap 2004eUniversity Of Washington Imap 2004fUniversity Of Washington Imap 2002eUniversity Of Washington Imap 2002fUniversity Of Washington ImapUniversity Of Washington Imap 2007bUniversity Of Washington Imap 2006fUniversity Of Washington Imap 2006eUniversity Of Washington Imap 2006d
8.5
CVSSv2
CVE-2018-19518
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_aopen function in osdep/unix/tcp_unix.c) without preventing argument injection, wh...
Php PhpDebian Debian Linux 8.0Debian Debian Linux 9.0Uw-imap Project Uw-imap 2007fCanonical Ubuntu Linux 18.04Canonical Ubuntu Linux 19.04Canonical Ubuntu Linux 16.04
NA
CVE-2009-0671
Rejected reason: Format string vulnerability in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit imap-2007d and other applications, allows remote malicious users to execute arbitrary code via format string specifiers in the initial request to the...
5
CVSSv2
CVE-2018-19935
ext/imap/php_imap.c in PHP 5.x and 7.x prior to 7.3.0 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via an empty string in the message argument to the imap_mail function.
Php PhpDebian Debian Linux 8.0Debian Debian Linux 9.0
5.5
CVSSv2
CVE-2022-22576
An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL...
Haxx CurlDebian Debian Linux 10.0Debian Debian Linux 11.0Netapp Clustered Data Ontap -Netapp Solidfire \\& Hci Management Node -Netapp Solidfire \\& Hci Storage Node -Brocade Fabric Operating System -Netapp Bootstrap Os -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H410s Firmware -Splunk Universal Forwarder 9.1.0Splunk Universal Forwarder
NA
CVE-2024-3094
Malicious code exists in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific fun...
Tukaani Xz 5.6.1Tukaani Xz 5.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook