Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1154

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1154
Last Modified 05 Sep 2008 04:25:49
Published 30 Aug 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1154

Summary

Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.

Vulnerable Systems

Operating System

  • Bsdi Bsd Os 4.2

Application

  • Carnegie Mellon University Cyrus Imap Server 1.6.24

  • Carnegie Mellon University Cyrus Imap Server 2.0.15

  • Carnegie Mellon University Cyrus Imap Server 2.0.16


References

XF - cyrus-imap-php-dos(7053)

BID - 3260

BUGTRAQ - 20010830 Possible Denial of Service with PHP and Cyrus IMAP on BSDi 4.2


Last Updated: 27 May 2016 10:36:32