FreeBSD Local Security Checks : FreeBSD Ports: cyrus

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.52444

Kategorie: FreeBSD Local Security Checks

Titel: FreeBSD Ports: cyrus

Zusammenfassung: The remote host is missing an update to the system; as announced in the referenced advisory.

Beschreibung: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following package is affected: cyrus

CVE-2002-1580
Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10
allows remote attackers to execute arbitrary code via a large length
value that facilitates a buffer overflow attack, a different
vulnerability than CVE-2002-1347.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2002-1580
BugTraq ID: 6298
http://www.securityfocus.com/bid/6298
Bugtraq: 20021202 pre-login buffer overflow in Cyrus IMAP server (Google Search)
http://www.securityfocus.com/archive/1/301864
CERT/CC vulnerability note: VU#740169
http://www.kb.cert.org/vuls/id/740169
Conectiva Linux advisory: 000557
http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000557
Conectiva Linux advisory: CLA-2002:557
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000557
Debian Security Information: DSA-215 (Google Search)
http://www.debian.org/security/2002/dsa-215
XForce ISS Database: cyrus-imap-preauth-bo(10744)
https://exchange.xforce.ibmcloud.com/vulnerabilities/10744

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.52444
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: cyrus
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: cyrus CVE-2002-1580 Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a large length value that facilitates a buffer overflow attack, a different vulnerability than CVE-2002-1347. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1580 BugTraq ID: 6298 http://www.securityfocus.com/bid/6298 Bugtraq: 20021202 pre-login buffer overflow in Cyrus IMAP server (Google Search) http://www.securityfocus.com/archive/1/301864 CERT/CC vulnerability note: VU#740169 http://www.kb.cert.org/vuls/id/740169 Conectiva Linux advisory: 000557 http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000557 Conectiva Linux advisory: CLA-2002:557 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000557 Debian Security Information: DSA-215 (Google Search) http://www.debian.org/security/2002/dsa-215 XForce ISS Database: cyrus-imap-preauth-bo(10744) https://exchange.xforce.ibmcloud.com/vulnerabilities/10744
Copyright	Copyright (C) 2008 E-Soft Inc.