Loading
Generated remediation guidance and an executive summary. No account required.
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
Use Carnegie Mellon University vendor hub and Cyrus Imap Server product page to widen CVE-2004-1067 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2004-1015, CVE-2004-1013 and CVE-2004-1012 for nearby disclosures in the same product family.