Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imap vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2008-1498
Stack-based buffer overflow in the IMAP service in NetWin Surgemail 3.8k4-4 and previous versions allows remote authenticated users to execute arbitrary code via a long first argument to the LIST command.
Netwin Surgemail
1 EDB exploit
7.5
CVSSv2
CVE-2006-5961
Buffer overflow in Mercury Mail Transport System 4.01b for Windows has unknown impact and attack vectors, as originally reported in a GLEG VulnDisco pack. NOTE: the provenance of this information is unknown; the details are obtained from third party information. The original rese...
Pegasus Mercury Mail Transport System 4.0.1b
1 EDB exploit
10
CVSSv2
CVE-2010-4711
Double free vulnerability in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allows remote malicious users to execute arbitrary code via a large parameter in a LIST command.
Novell Groupwise 5.57e
Novell Groupwise 6.0
Novell Groupwise 6.0.1
Novell Groupwise 6.5
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 7.0.3
Novell Groupwise 4.1a
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 7.0.4
Novell Groupwise 8.0
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 6.5.7
Novell Groupwise 5.0
Novell Groupwise 6.5.3
Novell Groupwise 7.0.1
1 EDB exploit
4
CVSSv2
CVE-2021-40111
In Apache James, while fuzzing with Jazzer the IMAP parsing stack, we discover that crafted APPEND and STATUS IMAP command could be used to trigger infinite loops resulting in expensive CPU computations and OutOfMemory exceptions. This can be used for a Denial Of Service attack. ...
Apache James
10
CVSSv2
CVE-2007-1579
Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote malicious users to have an unknown impact via a certain SUBSCRIBE command.
Atrium Software Mercur Messaging 2005 Sp4
Atrium Software Mercur Imapd
Atrium Software Mercur Messaging 2005 5.0 Sp3
1 EDB exploit
4
CVSSv2
CVE-2006-6762
The IMAP daemon (IMAPD) in Novell NetMail prior to 3.52e FTF2 allows remote authenticated users to cause a denial of service via an APPEND command with a single "(" (parenthesis) in the argument.
Novell Netmail 3.5.2
5
CVSSv2
CVE-2021-40110
In Apache James, using Jazzer fuzzer, we identified that an IMAP user can craft IMAP LIST commands to orchestrate a Denial Of Service using a vulnerable Regular expression. This affected Apache James before 3.6.1 We recommend upgrading to Apache James 3.6.1 or higher , which enfo...
Apache James
4
CVSSv2
CVE-2005-3813
IMAP service (meimaps.exe) of MailEnable Professional 1.7 and Enterprise 1.1 allows remote authenticated malicious users to cause a denial of service (application crash) by using RENAME with a non-existent mailbox, a different vulnerability than CVE-2005-3690.
Mailenable Mailenable Enterprise 1.1
Mailenable Mailenable Professional 1.7
1 EDB exploit
6.5
CVSSv2
CVE-2010-4717
Multiple stack-based buffer overflows in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allow remote malicious users to execute arbitrary code via a long (1) LIST or (2) LSUB command.
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 7.0.1
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 5.57e
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 6.5.6
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
Novell Groupwise 5.0
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 4.1
Novell Groupwise 6.5.7
Novell Groupwise 7.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-3242
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and previous versions allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server.
Mutt Mutt 1.4.2.1
Mutt Mutt 1.4.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »