Title: Imapd 'Local' Buffer Overflow Vulnerabilities
Severity: HIGH
Description:
Washington University Imapd is a popular server program that allows clients to download mail from servers via the IMAP protocol.
Imapd reportedly contains buffer overflow vulnerabilities which are exploitable by authenticated clients. These overflows may provide malicious clients with interactive access on the host.
Imapd lowers privileges after users authenticate. A user with shell access on the host may not accomplish anything by exploiting this vulnerability. These buffer overflows should be of concern to administrators of mail servers with IMAP users that do not have access to the underlying host.
If one of these vulnerabilities can be exploited to execute arbitrary code, an attacker with an IMAP-only username/password may be able to gain access to the server host. It is significantly easier for attackers to compromise the entire system (gain root) if they have local access.
MandrakeSoft has released upgraded packages which will eliminate the reported vulnerabilities.
More information is forthcoming in future updates pending complete SIA analysis of this/these vulnberabilities.
Affected Products:
- MandrakeSoft Corporate Server 1.0.1
- MandrakeSoft Linux Mandrake 7.1.0
- MandrakeSoft Linux Mandrake 7.2.0
- MandrakeSoft Linux Mandrake 8.0.0
- University of Washington imapd 2000a
- University of Washington imapd 2000b
- University of Washington imapd 2000c
References:
- University of Washington: UW-IMAP Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
