Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA597] DSA-597-1 cyrus-imapd


Vulnerability Assessment Details

[DSA597] DSA-597-1 cyrus-imapd

Vulnerability Assessment Summary
DSA-597-1 cyrus-imapd

Detailed Explanation for this Vulnerability Assessment

Stefan Esser discovered several security related problems in the Cyrus
IMAP daemon. Due to a bug in the command parser it is possible to
access memory beyond the allocated buffer in two places which could
lead to the execution of arbitrary code.
For the stable distribution (woody) these problems have been fixed in
version 1.5.19-9.2
For the unstable distribution (sid) these problems have been fixed in
version 2.1.17-1.
We recommend that you upgrade your cyrus-imapd package immediately.


Solution : http://www.debian.org/security/2004/dsa-597
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi

Cables, Connectors

1976 DEC Digital Equipment Corporation NEWS + EET Magazines vintage computer
$9.99
1976 DEC Digital Equipment Corporation NEWS + EET Magazines vintage computer  picturevintage Dec/Digital PDP 11 H7440 5V 25 Amp
$57.55
vintage Dec/Digital PDP 11 H7440 5V 25 Amp pictureVINTAGE HEATH ZENITH DIGITAL CLAMP METER SM 2208 WITH CASE AND MANUAL SM2208
$20.0
VINTAGE HEATH ZENITH DIGITAL CLAMP METER SM 2208 WITH CASE AND MANUAL SM2208 pictureVINTAGE DEC M8044 DB M8045 50-13128DP1 32K 18 BIT MOS MEMORY BOARD-UNTESTED
$24.99
VINTAGE DEC M8044 DB M8045 50-13128DP1 32K 18 BIT MOS MEMORY BOARD-UNTESTED picture


Discussions

No Discussions have been posted on this vulnerability.