CVE-2004-1013 in Cyrus IMAP Serverinfo

Summary

The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

11/04/2004

Disclosure

01/10/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

10.0

EPSS

0.10245

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1013
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1013
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1013/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!