Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imap vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-3242
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and previous versions allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server.
Mutt Mutt 1.4.2.1
Mutt Mutt 1.4.2
505
VMScore
CVE-2008-2859
Unspecified vulnerability in the IMAP service in NetWin SurgeMail prior to 3.9g2 allows remote malicious users to cause a denial of service (daemon crash) via unknown vectors related to an "imap command."
Netwin Surgemail 3.8f
Netwin Surgemail 3.8f2
Netwin Surgemail 3.8k3
Netwin Surgemail 3.8k4
Netwin Surgemail 3.9c
Netwin Surgemail 3.9e
Netwin Surgemail 3.8a
Netwin Surgemail 3.8i2
Netwin Surgemail 3.8i3
Netwin Surgemail 3.8q
Netwin Surgemail 3.8s
Netwin Surgemail 3.8f3
Netwin Surgemail 3.8i
Netwin Surgemail 3.8m
Netwin Surgemail 3.8o
Netwin Surgemail
Netwin Surgemail 3.8b
Netwin Surgemail 3.8d
Netwin Surgemail 3.8k
Netwin Surgemail 3.8k2
Netwin Surgemail 3.8u
Netwin Surgemail 3.9a
1 EDB exploit
685
VMScore
CVE-2008-1218
Argument injection vulnerability in Dovecot 1.0.x prior to 1.0.13, and 1.1.x prior to 1.1.rc3, when using blocking passdbs, allows remote malicious users to bypass the password check via a password containing TAB characters, which are treated as argument delimiters that enable th...
Dovecot Dovecot
1 EDB exploit
516
VMScore
CVE-2021-20247
A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious or compromised server to use specially crafted mailbox names containing '..' path components to access data outside the des...
Mbsync Project Mbsync
Debian Debian Linux 9.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Extra Packages For Enterprise Linux 8.0
405
VMScore
CVE-2008-7182
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions prior to 3.9g2, allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector...
Netwin Surgemail 3.9e
1 EDB exploit
755
VMScore
CVE-2003-1177
Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.
Atrium Software Mercur Mailserver 4.1 Sp1
Atrium Software Mercur Mailserver 4.2
Atrium Software Mercur Mailserver 4.2 Sp1
Atrium Software Mercur Mailserver 4.2 Sp2
Atrium Software Mercur Mailserver 3.3
Atrium Software Mercur Mailserver 3.3 Sp1
Atrium Software Mercur Mailserver 3.3 Sp2
Atrium Software Mercur Mailserver 4.1
1 EDB exploit
1000
VMScore
CVE-2004-2513
Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote malicious users to execute arbitrary code via a long SELECT command.
Pmail Pegasus 4.01
5 EDB exploits
383
VMScore
CVE-2013-0289
Isync 0.4 prior to 1.0.6, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid certificate...
Isync Project Isync 1.0.2
Isync Project Isync 1.0.1
Isync Project Isync 1.0.0
Isync Project Isync 0.8
Isync Project Isync 1.0.5
Isync Project Isync 1.0.4
Isync Project Isync 1.0.3
Isync Project Isync 0.5
Isync Project Isync 0.4
Isync Project Isync 0.7
Isync Project Isync 0.6
1000
VMScore
CVE-2001-1009
Fetchmail (aka fetchmail-ssl) prior to 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
Fetchmail Fetchmail 5.8.13
Fetchmail Fetchmail 5.8.11
Fetchmail Fetchmail 5.8.5
Fetchmail Fetchmail 5.8.4
Fetchmail Fetchmail 5.4.4
Fetchmail Fetchmail 5.4.3
Fetchmail Fetchmail 5.3.8
Fetchmail Fetchmail 5.3.3
Fetchmail Fetchmail 5.0.6
Fetchmail Fetchmail 5.0.5
Fetchmail Fetchmail 5.0.4
Fetchmail Fetchmail 5.8.2
Fetchmail Fetchmail 5.8
Fetchmail Fetchmail 5.5.2
Fetchmail Fetchmail 5.4.5
Fetchmail Fetchmail 5.3.1
Fetchmail Fetchmail 5.2.8
Fetchmail Fetchmail 5.1.0
Fetchmail Fetchmail 5.0.7
Fetchmail Fetchmail 5.0.0
Fetchmail Fetchmail 4.7.6
Fetchmail Fetchmail 4.7.1
2 EDB exploits
660
VMScore
CVE-2007-3925
Multiple buffer overflows in the IMAP service (imapd32.exe) in Ipswitch IMail Server 2006 prior to 2006.21 allow remote authenticated users to execute arbitrary code via the (1) Search or (2) Search Charset command.
Ipswitch Ipswitch Collaboration Suite
Ipswitch Imail Server
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »