Back to search
CVE-2005-2933
Published: Oct 13, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MDKSA-2005:194
vendor-advisory
x_refsource_MANDRIVA
RHSA-2005:850
vendor-advisory
x_refsource_REDHAT
17950
third-party-advisory
x_refsource_SECUNIA
21252
third-party-advisory
x_refsource_SECUNIA
17276
third-party-advisory
x_refsource_SECUNIA
17148
third-party-advisory
x_refsource_SECUNIA
20222
third-party-advisory
x_refsource_SECUNIA
20210
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm
x_refsource_CONFIRM
18554
third-party-advisory
x_refsource_SECUNIA
47
third-party-advisory
x_refsource_SREASON
17152
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0276
vendor-advisory
x_refsource_REDHAT
DSA-861
vendor-advisory
x_refsource_DEBIAN
20051004 iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability
mailing-list
x_refsource_FULLDISC
17062
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9858
vdb-entry
signature
x_refsource_OVAL
15009
vdb-entry
x_refsource_BID
http://www.washington.edu/imap/
x_refsource_CONFIRM
RHSA-2006:0501
vendor-advisory
x_refsource_REDHAT
RHSA-2005:848
vendor-advisory
x_refsource_REDHAT
RHSA-2006:0549
vendor-advisory
x_refsource_REDHAT
20951
third-party-advisory
x_refsource_SECUNIA
20051004 UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
uw-imap-mailbox-name-bo(22518)
vdb-entry
x_refsource_XF
http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm
x_refsource_CONFIRM
FLSA:170411
vendor-advisory
x_refsource_FEDORA
19832
third-party-advisory
x_refsource_SECUNIA
17930
third-party-advisory
x_refsource_SECUNIA
1015000
vdb-entry
x_refsource_SECTRACK
VU#933601
third-party-advisory
x_refsource_CERT-VN
GLSA-200510-10
vendor-advisory
x_refsource_GENTOO
SSA:2005-310-06
vendor-advisory
x_refsource_SLACKWARE
21564
third-party-advisory
x_refsource_SECUNIA
FLSA:184098
vendor-advisory
x_refsource_FEDORA
MDKSA-2005:189
vendor-advisory
x_refsource_MANDRIVA
17928
third-party-advisory
x_refsource_SECUNIA
17336
third-party-advisory
x_refsource_SECUNIA
ADV-2006-2685
vdb-entry
x_refsource_VUPEN
17215
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2005:023
vendor-advisory
x_refsource_SUSE
17483
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now