Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cyrus imap vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-0546
Multiple buffer overflows in Cyrus IMAPd prior to 2.2.11 may allow malicious users to execute arbitrary code via (1) an off-by-one error in the imapd annotate extension, (2) an off-by-one error in "cached header handling," (3) a stack-based buffer overflow in fetchnews,...
Cyrus Imapd 2.0.17
Cyrus Imapd 2.1.16
Cyrus Imapd 2.1.17
Cyrus Imapd 2.1.18
Cyrus Imapd 2.2.10
10
CVSSv2
CVE-2002-2253
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and previous versions allow remote malicious users to execute arbitrary code via (1) a long header name, (2) a long IMAP flag, or (3) a script that generates a large number of errors that overflow the resulting error strin...
Cyrus Libsieve
7.5
CVSSv2
CVE-2011-3372
imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x prior to 2.4.12 allows remote malicious users to bypass authentication by sending an AUTHINFO USER command without sending an additional AUTHINFO PASS command.
Cyrus Imapd
7.5
CVSSv2
CVE-2019-11356
The CalDAV feature in httpd in Cyrus IMAP 2.5.x up to and including 2.5.12 and 3.0.x up to and including 3.0.9 allows remote malicious users to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
Cyrus Imap
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
5
CVSSv2
CVE-2013-7177
config/filter.d/cyrus-imap.conf in the cyrus-imap filter in Fail2ban prior to 0.8.11 allows remote malicious users to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression.
Fail2ban Fail2ban 0.8.7.1
Fail2ban Fail2ban 0.8.7
Fail2ban Fail2ban 0.7.9
Fail2ban Fail2ban 0.7.8
Fail2ban Fail2ban 0.7.1
Fail2ban Fail2ban 0.7.0
Fail2ban Fail2ban 0.5.1
Fail2ban Fail2ban 0.5.0
Fail2ban Fail2ban
Fail2ban Fail2ban 0.8.9
Fail2ban Fail2ban 0.8.8
Fail2ban Fail2ban 0.8.2
Fail2ban Fail2ban 0.8.1
Fail2ban Fail2ban 0.8.0
Fail2ban Fail2ban 0.7.3
Fail2ban Fail2ban 0.7.2
Fail2ban Fail2ban 0.5.3
Fail2ban Fail2ban 0.5.2
Fail2ban Fail2ban 0.1.1
Fail2ban Fail2ban 0.1.0
Fail2ban Fail2ban 0.8.4
Fail2ban Fail2ban 0.8.3
4.6
CVSSv2
CVE-2004-1089
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users.
Apple Darwin Streaming Server 5.0.1
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.3
Apple Mac Os X 10.2
Apple Mac Os X 10.2.8
Apple Mac Os X 10.3
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.2.1
Apple Mac Os X Server 10.2.8
Apple Mac Os X Server 10.3
Apple Mac Os X 10.2.6
Apple Mac Os X 10.2.7
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.6
Apple Mac Os X Server 10.2.6
Apple Mac Os X Server 10.2.7
Apple Mac Os X Server 10.3.6
Apple Mac Os X 10.2.3
Apple Mac Os X 10.2.4
Apple Mac Os X 10.2.5
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3