Multiple buffer overflows in Cyrus IMAPd prior to 2.2.11 may allow malicious users to execute arbitrary code via (1) an off-by-one error in the imapd annotate extension, (2) an off-by-one error in "cached header handling," (3) a stack-based buffer overflow in fetchnews, or (4) a stack-based buffer overflow in imapd.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cyrus imapd 2.0.17 |
||
cyrus imapd 2.1.16 |
||
cyrus imapd 2.1.17 |
||
cyrus imapd 2.1.18 |
||
cyrus imapd 2.2.10 |