Format string vulnerability in the ParseBannerAndCapability function in main.c for up-imapproxy 1.2.3 and 1.2.4 allows remote IMAP servers to execute arbitrary code via format string specifiers in a banner or capability line.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
up-imapproxy up-imapproxy 1.2.3 |
||
up-imapproxy up-imapproxy 1.2.4 |