Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imap vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2000-0233
SuSE Linux IMAP server allows remote malicious users to bypass IMAP authentication and gain privileges.
Suse Suse Linux Imap Server 1.0
890
VMScore
CVE-2008-5005
Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and previous versions, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the...
University Of Washington Alpine 0.82
University Of Washington Alpine 0.999999
University Of Washington Alpine 0.98
University Of Washington Alpine 1.00
University Of Washington Alpine 1.10
University Of Washington Alpine 0.99
University Of Washington Alpine 0.81
University Of Washington Imap Toolkit 2003
University Of Washington Imap Toolkit 2005
University Of Washington Imap Toolkit 2002
University Of Washington Alpine 2.00
University Of Washington Imap Toolkit 2007c
University Of Washington Alpine 0.80
University Of Washington Alpine 0.99999
University Of Washington Alpine 0.999
University Of Washington Alpine 0.9999
University Of Washington Imap Toolkit 2006
University Of Washington Imap Toolkit 2004
University Of Washington Imap Toolkit 2007
University Of Washington Alpine 0.83
356
VMScore
CVE-2021-32056
Cyrus IMAP prior to 3.2.7, and 3.3.x and 3.4.x prior to 3.4.1, allows remote authenticated users to bypass intended access restrictions on server annotations and consequently cause replication to stall.
Cyrus Imap
Fedoraproject Fedora 34
Fedoraproject Fedora 35
1000
VMScore
CVE-1999-0920
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote malicious users to gain privileges via the FOLD command.
University Of Washington Imap 4.4
University Of Washington Pop2d
1 EDB exploit
1000
VMScore
CVE-1999-0005
Arbitrary command execution via IMAP buffer overflow in authenticate command.
University Of Washington Imap 10.234
Netscape Messaging Server 3.55
1 EDB exploit
758
VMScore
CVE-2018-19518
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_aopen function in osdep/unix/tcp_unix.c) without preventing argument injection, wh...
Php Php
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Uw-imap Project Uw-imap 2007f
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 16.04
4 Github repositories
668
VMScore
CVE-2003-0040
SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and previous versions allows remote malicious users to execute SQL code via the user name.
Inter7 Courier-imap 1.6
Double Precision Incorporated Courier Mta 0.37.3
668
VMScore
CVE-2019-18928
Cyrus IMAP 2.5.x prior to 2.5.14 and 3.x prior to 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection.
Cyrus Imap
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 9.0
NA
CVE-2023-39441
Apache Airflow SMTP Provider prior to 1.3.0, Apache Airflow IMAP Provider prior to 3.3.0, and Apache Airflow prior to 2.7.0 are affected by the Validation of OpenSSL Certificate vulnerability. The default SSL context with SSL library did not check a server's X.509 certificat...
Apache Airflow
Apache Apache-airflow-providers-smtp
Apache Apache-airflow-providers-imap
445
VMScore
CVE-2021-33582
Cyrus IMAP prior to 3.4.2 allows remote malicious users to cause a denial of service (multiple-minute daemon hang) via input that is mishandled during hash-table interaction. Because there are many insertions into a single bucket, strcmp becomes slow. This is fixed in 3.4.2, 3.2....
Cyrus Imap
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »