Vendor coverage
Track published CVEs, severity trends, and remediation context for carnegie_mellon_university products.
Search results
Showing 1-10 of 10 vulnerabilities.
Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via strings that are used as input to the sasl_encode64 function in lib/saslutil.c.
Affected vendor
carnegie mellon universityAffected product
cyrus-saslCoverage
46 affected product entries
CVSS
7.5
UNKNOWN
Published
May 15, 2009
Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.
Affected vendor
carnegie mellon universityAffected product
snmptrapdCoverage
2 affected product entries
CVSS
6.4
UNKNOWN
Published
Jan 18, 2006
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
22 affected product entries
CVSS
10.0
UNKNOWN
Published
Jan 10, 2005
Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2004-1011.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
22 affected product entries
CVSS
10.0
UNKNOWN
Published
Jan 10, 2005
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
23 affected product entries
CVSS
10.0
UNKNOWN
Published
Jan 10, 2005
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index increment error that leads to an out-of-bounds memory corruption.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
23 affected product entries
CVSS
10.0
UNKNOWN
Published
Jan 10, 2005
Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long (1) PROXY or (2) LOGIN command, a different vulnerability than CVE-2004-1015.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
23 affected product entries
CVSS
10.0
UNKNOWN
Published
Jan 10, 2005
Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a large length value that facilitates a buffer overflow attack, a different vulnerability than CVE-2002-1347.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
6 affected product entries
CVSS
7.5
UNKNOWN
Published
Jun 14, 2004
Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients.
Affected vendor
carnegie mellon universityAffected product
cyrus imap serverCoverage
4 affected product entries
CVSS
5.0
UNKNOWN
Published
Aug 30, 2001
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.
Affected vendor
carnegie mellon universityAffected product
cyrus-saslCoverage
Single affected product entry
CVSS
4.6
UNKNOWN
Published
Dec 19, 2000
