FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
35f6fdf8-a425-11d8-9c6d-0020ed76ef5a	Cyrus IMAP pre-authentication heap overflow vulnerability In December 2002, Timo Sirainen reported: Cyrus IMAP server has a remotely exploitable pre-login buffer overflow. [...] Note that you don't have to log in before exploiting this, and since Cyrus runs everything under one UID, it's possible to read every user's mail in the system. It is unknown whether this vulnerability is exploitable for code execution on FreeBSD systems. Discovery 2002-12-02 Entry 2004-05-12 Modified 2004-06-27 cyrus-imapd < 2.0.17 ge 2.1 lt 2.1.11 CVE-2002-1580 6298 740169 http://marc.theaimsgroup.com/?l=bugtraq&m=103886607825605 http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrus&msg=19349

VuXML ID

Description

35f6fdf8-a425-11d8-9c6d-0020ed76ef5a

Cyrus IMAP pre-authentication heap overflow vulnerability

In December 2002, Timo Sirainen reported:

Cyrus IMAP server has a remotely exploitable pre-login buffer overflow. [...] Note that you don't have to log in before exploiting this, and since Cyrus runs everything under one UID, it's possible to read every user's mail in the system.

It is unknown whether this vulnerability is exploitable for code execution on FreeBSD systems.

Discovery 2002-12-02
Entry 2004-05-12
Modified 2004-06-27
cyrus-imapd

< 2.0.17

ge 2.1 lt 2.1.11

CVE-2002-1580
6298
740169
http://marc.theaimsgroup.com/?l=bugtraq&m=103886607825605
http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrus&msg=19349