Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imap vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-1154
Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote malicious users to cause a denial of service (hang) using PHP IMAP clients.
Carnegie Mellon University Cyrus Imap Server 1.6.24
Carnegie Mellon University Cyrus Imap Server 2.0.15
Carnegie Mellon University Cyrus Imap Server 2.0.16
Bsdi Bsd Os 4.2
6.4
CVSSv2
CVE-2017-14230
In the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP prior to 3.0.4, an off-by-one error in prefix calculation for the LIST command caused use of uninitialized memory, which might allow remote malicious users to obtain sensitive information or cause a denial of servi...
Cyrus Imap
7.5
CVSSv2
CVE-2004-0224
Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP prior to 3.0.0, Courier prior to 0.45, and SqWebMail prior to 4.0.0 may allow remote malicious users to execute arbitrary code "when Unicode character is out of BMP range."
Double Precision Incorporated Courier Mta 0.43
Double Precision Incorporated Courier Mta 0.43.1
Double Precision Incorporated Sqwebmail 3.6.2
Double Precision Incorporated Sqwebmail 3.6 .0
Inter7 Courier-imap 2.2.1
Double Precision Incorporated Courier Mta 0.44.2
Double Precision Incorporated Sqwebmail 3.5.2
Inter7 Courier-imap 2.0.0
Inter7 Courier-imap 2.1
Double Precision Incorporated Courier Mta 0.43.2
Double Precision Incorporated Courier Mta 0.44
Inter7 Courier-imap 1.6
Inter7 Courier-imap 1.7
Double Precision Incorporated Sqwebmail 3.5.3
Double Precision Incorporated Sqwebmail 3.6.1
Inter7 Courier-imap 2.1.1
Inter7 Courier-imap 2.1.2
Inter7 Courier-imap 2.2.0
Gentoo Linux 1.4
NA
CVE-2023-35169
PHP-IMAP is a wrapper for common IMAP communication without the need to have the php-imap module installed / enabled. Prior to version 5.3.0, an unsanitized attachment filename allows any unauthenticated user to leverage a directory traversal vulnerability, which results in a rem...
Webklex Php-imap
7.5
CVSSv2
CVE-2000-0284
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.
University Of Washington Imap 12.264
8 EDB exploits
7.5
CVSSv2
CVE-2005-0198
A logic error in the CRAM-MD5 code for the University of Washington IMAP (UW-IMAP) server, when Challenge-Response Authentication Mechanism with MD5 (CRAM-MD5) is enabled, does not properly enforce all the required conditions for successful authentication, which allows remote mal...
University Of Washington Uw-imap
2.1
CVSSv2
CVE-2000-1197
POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.
University Of Washington Imap 4.5
5
CVSSv2
CVE-2005-3189
Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote malicious users to read arbitrary email messages via ".." sequences in the SELECT command.
Qualcomm Worldmail Imap Server 3.0
1 EDB exploit
7.5
CVSSv2
CVE-2000-0847
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote malicious users to execute arbitrary commands via a long X-Keywords header.
University Of Washington Imap 4.7b
University Of Washington Imap 4.7c
University Of Washington Pine 4.20
University Of Washington Pine 4.21
6.5
CVSSv2
CVE-2018-0686
Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and previous versions, Denbun IMAP version V3.3I R4.0 and previous versions) allows remote authenticated malicious users to upload and execute any executable files via unspecified vectors.
Neo Debun Pop
Neo Debun Imap
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »