Vulnerabilities (CVE)

Filtered by vendor Cyrus Subscribe
Filtered by product Imapd
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-3372 1 Cyrus 1 Imapd 2024-11-21 7.5 HIGH N/A
imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before 2.4.12 allows remote attackers to bypass authentication by sending an AUTHINFO USER command without sending an additional AUTHINFO PASS command.
CVE-2006-2502 1 Cyrus 1 Imapd 2024-11-21 5.1 MEDIUM N/A
Stack-based buffer overflow in pop3d in Cyrus IMAPD (cyrus-imapd) 2.3.2, when the popsubfolders option is enabled, allows remote attackers to execute arbitrary code via a long USER command.
CVE-2005-0546 1 Cyrus 1 Imapd 2024-11-20 7.5 HIGH N/A
Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow attackers to execute arbitrary code via (1) an off-by-one error in the imapd annotate extension, (2) an off-by-one error in "cached header handling," (3) a stack-based buffer overflow in fetchnews, or (4) a stack-based buffer overflow in imapd.