Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imap vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-14358
An issue exists in Mutt prior to 1.10.1 and NeoMutt prior to 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long RFC822.SIZE field.
Mutt Mutt
Neomutt Neomutt
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2017-8818
curl and libcurl prior to 7.57.0 on 32-bit platforms allow malicious users to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact because too little memory is allocated for interfacing to an SSL library.
Haxx Curl 7.56.1
Haxx Libcurl 7.56.0
Haxx Libcurl 7.56.1
Haxx Curl 7.56.0
7.5
CVSSv2
CVE-2015-8078
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote malicious users to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because o...
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Cyrus Imap 2.4.4
Cyrus Imap 2.3.7
Cyrus Imap 2.4.6
Cyrus Imap 2.3.4
Cyrus Imap 2.4.16
Cyrus Imap 2.4.1
Cyrus Imap 2.3.5
Cyrus Imap 2.3.17
Cyrus Imap 2.4.0
Cyrus Imap 2.4.11
Cyrus Imap 2.5.1
Cyrus Imap 2.4.8
Cyrus Imap 2.4.10
Cyrus Imap 2.3.3
Cyrus Imap 2.3.8
Cyrus Imap 2.4.2
Cyrus Imap 2.5.0
Cyrus Imap 2.4.14
Cyrus Imap 2.3.14
Cyrus Imap 2.3.1
7.5
CVSSv2
CVE-2015-8076
The index_urlfetch function in index.c in Cyrus IMAP 2.3.x prior to 2.3.19, 2.4.x prior to 2.4.18, 2.5.x prior to 2.5.4 allows remote malicious users to obtain sensitive information or possibly have unspecified other impact via vectors related to the urlfetch range, which trigger...
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Cyrus Imap 2.3.0
Cyrus Imap 2.3.1
Cyrus Imap 2.3.8
Cyrus Imap 2.3.9
Cyrus Imap 2.3.16
Cyrus Imap 2.3.17
Cyrus Imap 2.4.6
Cyrus Imap 2.4.7
Cyrus Imap 2.4.14
Cyrus Imap 2.4.15
Cyrus Imap 2.3.6
Cyrus Imap 2.3.7
Cyrus Imap 2.3.14
Cyrus Imap 2.3.15
Cyrus Imap 2.4.4
Cyrus Imap 2.4.5
Cyrus Imap 2.4.12
Cyrus Imap 2.4.13
Cyrus Imap 2.5.2
Cyrus Imap 2.5.3
7.5
CVSSv2
CVE-2015-8077
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote malicious users to have unspecified impact via vectors related to urlfetch range checks and the start_octet variable. NOTE: this vulnerability exists because of a...
Cyrus Imap 2.4.4
Cyrus Imap 2.3.7
Cyrus Imap 2.4.6
Cyrus Imap 2.3.4
Cyrus Imap 2.4.16
Cyrus Imap 2.4.1
Cyrus Imap 2.3.5
Cyrus Imap 2.3.17
Cyrus Imap 2.4.0
Cyrus Imap 2.4.11
Cyrus Imap 2.5.1
Cyrus Imap 2.4.8
Cyrus Imap 2.4.10
Cyrus Imap 2.3.3
Cyrus Imap 2.3.8
Cyrus Imap 2.4.2
Cyrus Imap 2.5.0
Cyrus Imap 2.4.14
Cyrus Imap 2.3.14
Cyrus Imap 2.3.1
Cyrus Imap 2.4.17
Cyrus Imap 2.3.13
7.5
CVSSv2
CVE-2013-6172
steps/utils/save_pref.inc in Roundcube webmail prior to 0.8.7 and 0.9.x prior to 0.9.5 allows remote malicious users to modify configuration settings via the _session parameter, which can be leveraged to read arbitrary files, conduct SQL injection attacks, and execute arbitrary c...
Roundcube Webmail 0.9
Roundcube Webmail 0.8.2
Roundcube Webmail 0.8.1
Roundcube Webmail 0.5.3
Roundcube Webmail 0.5.2
Roundcube Webmail 0.4
Roundcube Webmail 0.2.1
Roundcube Webmail 0.2
Roundcube Webmail 0.1
Roundcube Webmail 0.9.3
Roundcube Webmail 0.9.2
Roundcube Webmail
Roundcube Webmail 0.8.5
Roundcube Webmail 0.7.2
Roundcube Webmail 0.7.1
Roundcube Webmail 0.7
Roundcube Webmail 0.5
Roundcube Webmail 0.3
Roundcube Webmail 0.1.1
Roundcube Webmail 0.9.1
Roundcube Webmail 0.9.0
Roundcube Webmail 0.8.4
7.5
CVSSv2
CVE-2013-0249
Stack-based buffer overflow in the Curl_sasl_create_digest_md5_message function in lib/curl_sasl.c in curl and libcurl 7.26.0 up to and including 7.28.1, when negotiating SASL DIGEST-MD5 authentication, allows remote malicious users to cause a denial of service (crash) and possib...
Haxx Curl 7.26.0
Haxx Libcurl 7.26.0
Haxx Curl 7.28.1
Haxx Libcurl 7.28.1
Haxx Curl 7.27.0
Haxx Libcurl 7.27.0
Haxx Curl 7.28.0
Haxx Libcurl 7.28.0
Canonical Ubuntu Linux 12.10
1 EDB exploit
7.5
CVSSv2
CVE-2012-0036
curl and libcurl 7.2x prior to 7.24.0 do not properly consider special characters during extraction of a pathname from a URL, which allows remote malicious users to conduct data-injection attacks via a crafted URL, as demonstrated by a CRLF injection attack on the (1) IMAP, (2) P...
Curl Curl 7.21.1
Curl Curl 7.21.2
Curl Curl 7.23.0
Curl Curl 7.23.1
Curl Curl 7.20.1
Curl Curl 7.21.0
Curl Curl 7.21.7
Curl Curl 7.22.0
Curl Curl 7.21.3
Curl Curl 7.21.4
Curl Curl 7.20.0
Curl Curl 7.21.5
Curl Curl 7.21.6
Curl Libcurl 7.21.3
Curl Libcurl 7.21.4
Curl Libcurl 7.21.1
Curl Libcurl 7.21.2
Curl Libcurl 7.23.1
Curl Libcurl 7.20.0
Curl Libcurl 7.21.5
Curl Libcurl 7.21.6
Curl Libcurl 7.21.7
7.5
CVSSv2
CVE-2012-0459
The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x up to and including 10.0, Firefox ESR 10.x prior to 10.0.3, Thunderbird 5.0 up to and including 10.0, Thunderbird ESR 10.x prior to 10.0.3, and SeaMonkey prior to 2.8 allows remote malicious users to cause a d...
Mozilla Firefox 4.0
Mozilla Firefox 6.0.1
Mozilla Firefox 7.0.1
Mozilla Firefox 4.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.2
Mozilla Firefox 9.0
Mozilla Firefox 7.0
Mozilla Firefox 8.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox Esr 10.0
Mozilla Firefox Esr 10.1
Mozilla Firefox Esr 10.2
Mozilla Thunderbird 7.0.1
Mozilla Thunderbird 8.0
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 7.0
Mozilla Thunderbird 9.0
7.5
CVSSv2
CVE-2012-0461
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 3.6.28 and 4.x up to and including 10.0, Firefox ESR 10.x prior to 10.0.3, Thunderbird prior to 3.1.20 and 5.0 up to and including 10.0, Thunderbird ESR 10.x prior to 10.0.3, and SeaMonkey prio...
Mozilla Firefox
Mozilla Firefox Esr 10.0.2
Mozilla Firefox Esr 10.0
Mozilla Firefox Esr 10.0.1
Mozilla Thunderbird
Mozilla Thunderbird Esr 10.0.2
Mozilla Thunderbird Esr 10.0
Mozilla Thunderbird Esr 10.0.1
Mozilla Seamonkey 2.7
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.0.11
Mozilla Seamonkey 2.0.12
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »