The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index increment error that leads to an out-of-bounds memory corruption.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2005-01-10 05:00
Updated : 2024-02-04 16:52
NVD link : CVE-2004-1012
Mitre link : CVE-2004-1012
CVE.ORG link : CVE-2004-1012
JSON object : View
Products Affected
trustix
- secure_linux
redhat
- fedora_core
openpkg
- openpkg
carnegie_mellon_university
- cyrus_imap_server
conectiva
- linux
ubuntu
- ubuntu_linux
CWE