CVE-2004-1013 in Cyrus IMAP Serverالمعلومات

الملخص

بحسب MITRE

The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

04/11/2004

إفشاء

10/01/2005

الاعتدال

تمت الموافقة

إدخال

VDB-23661

CPE

جاهز

CWE

CWE-119 (مؤكد)

استغلال

تحميل

CVSS

10.0 (VulDB)

EPSS

0.05830

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1013
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1013
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1013/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!