University Of Washington » Imap : Security Vulnerabilities, CVEs,
Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent attackers to cause a denial of service (crash) via an e-mail message that triggers a buffer overflow.
Max CVSS
4.3
EPSS Score
0.25%
Published
2008-12-23
Updated
2017-08-08
POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-08-31
Updated
2016-10-18
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
Max CVSS
7.5
EPSS Score
0.95%
Published
2000-11-14
Updated
2017-10-10
CVE-2000-0284
Public exploit
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.
Max CVSS
7.5
EPSS Score
92.34%
Published
2000-04-16
Updated
2008-09-10
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.
Max CVSS
10.0
EPSS Score
4.53%
Published
1999-05-26
Updated
2008-09-09
Buffer overflow in University of Washington's implementation of IMAP and POP servers.
Max CVSS
10.0
EPSS Score
11.30%
Published
1997-04-07
Updated
2022-08-17
Arbitrary command execution via IMAP buffer overflow in authenticate command.
Max CVSS
10.0
EPSS Score
91.96%
Published
1998-07-20
Updated
2008-09-09
7 vulnerabilities found