Rapid7 Vulnerability & Exploit Database

wu-imapd Local Commands Buffer Overflow Vulnerability

Back to Search

wu-imapd Local Commands Buffer Overflow Vulnerability

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
04/16/2000
Created
07/25/2018
Added
11/01/2004
Modified
07/13/2012

Description

The University of Washinton imapd program contains multiple buffer overflows in code that handles several IMAP commands. This can yield an unprivileged shell to the system, which may be considered a vulnerability if mail users are not normally allowed shell access.

Solution(s)

  • wu-imapd-upgrade-2001a

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;