| VID |
18005 |
| Severity |
40 |
| Port |
143 |
| Protocol |
TCP |
| Class |
IMAP |
| Detailed Description |
Remote users can obtain root access on systems running a vulnerable IMAP or POP server. They do not need access to an account on the system to do this.
The overflow occurs when the user issues a too long argument in the AUTHENTICATE command.
* References:
http://www.cert.org/advisories/CA-97.09.imap_pop.html
http://xforce.iss.net/xforce/xfdb/96 |
| Recommendation |
Upgrade your uw-imap server to the newest version. |
| Related URL |
CVE-1999-0042 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
