Cyrus IMAPD Pre-Login Heap Corruption Vulnerability

Bugtraq ID: 6298
Class: Boundary Condition Error
CVE: CVE-2002-1580
Remote: Yes
Local: No
Published: Dec 02 2002 12:00AM
Updated: Jul 11 2009 07:16PM
Credit: Vulnerability discovery credited to Timo Sirainen <tss@iki.fi>.
Vulnerable: Carnegie Mellon University Cyrus IMAP Server 2.1.10
Carnegie Mellon University Cyrus IMAP Server 2.1.9
+ S.u.S.E. Linux 8.1
Carnegie Mellon University Cyrus IMAP Server 2.0.16
+ S.u.S.E. Linux 8.0 i386
+ S.u.S.E. Linux 7.3 sparc
+ S.u.S.E. Linux 7.3 ppc
+ S.u.S.E. Linux 7.3 i386
Carnegie Mellon University Cyrus IMAP Server 2.0.12
+ S.u.S.E. Linux 7.1 x86
+ S.u.S.E. Linux 7.1 ppc
+ S.u.S.E. Linux 7.1 alpha
Carnegie Mellon University Cyrus IMAP Server 1.5.19
+ Debian Linux 3.0
+ Debian Linux 2.2
Carnegie Mellon University Cyrus IMAP Server 1.4
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus