Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0379

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0379
Last Modified 05 Sep 2008 04:27:52
Published 25 Jun 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0379

Summary

Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request.

Vulnerable Systems

Application

  • University Of Washington Uw-imap 2000.283

  • University Of Washington Uw-imap 2000.284

  • University Of Washington Uw-imap 2000.287

  • University Of Washington Uw-imap 2000.315


References

CERT-VN - VU#961489

BUGTRAQ - 20020510 wu-imap buffer overflow condition

XF - wuimapd-authenticated-user-bo(10803)

CONFIRM - http://www.washington.edu/imap/buffer.html

BID - 4713

REDHAT - RHSA-2002:092

ENGARDE - ESA-20020607-013

MANDRAKE - MDKSA-2002:034

XF - wuimapd-partial-mailbox-bo(9055)

HP - HPSBTL0205-043

CONECTIVA - CLA-2002:487

CALDERA - CSSA-2002-021.0


Last Updated: 27 May 2016 10:36:54