Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cyrus_imap_server | Carnegie_mellon_university | 1.4 | 1.4 |
Cyrus_imap_server | Carnegie_mellon_university | 1.5.19 | 1.5.19 |
Cyrus_imap_server | Carnegie_mellon_university | 2.0.12 | 2.0.12 |
Cyrus_imap_server | Carnegie_mellon_university | 2.0.16 | 2.0.16 |
Cyrus_imap_server | Carnegie_mellon_university | 2.1.7 | 2.1.7 |
Cyrus_imap_server | Carnegie_mellon_university | 2.1.9 | 2.1.9 |
Cyrus_imap_server | Carnegie_mellon_university | 2.1.10 | 2.1.10 |
Cyrus_imap_server | Carnegie_mellon_university | 2.1.16 | 2.1.16 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.0_alpha | 2.2.0_alpha |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.1_beta | 2.2.1_beta |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.2_beta | 2.2.2_beta |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.3 | 2.2.3 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.4 | 2.2.4 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.5 | 2.2.5 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.6 | 2.2.6 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.7 | 2.2.7 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.8 | 2.2.8 |
Cyrus_imap_server | Carnegie_mellon_university | 2.2.9 | 2.2.9 |
Cyrus21-imapd | Ubuntu | dapper | * |
Cyrus21-imapd | Ubuntu | edgy | * |
Cyrus21-imapd | Ubuntu | feisty | * |