CVE-2011-3372

Synopsis Moderate: cyrus-imapd security update Type/Severity Security Advisory: Moderate Topic Updated cyrus-imapd packages that fix two security issues are now availablefor Red Hat Enterprise Linux 4, 5, and 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Commo ...

Multiple security issues have been discovered in cyrus-imapd, a highly scalable mail system designed for use in enterprise environments The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-3208 Coverity discovered a stack-based buffer overflow in the NNTP server implementation (nttpd) of cyrus-imapd ...

An authentication bypass flaw was found in the cyrus-imapd NNTP server, nntpd A remote user able to use the nntpd service could use this flaw to read or post newsgroup messages on an NNTP server configured to require user authentication, without providing valid authentication credentials (CVE-2011-3372) A NULL pointer dereference flaw was found i ...