CVE-2000-1197

3 documents3 sources

Severity

2.1LOW

EPSS

0.1%

top 76.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

University OF Washington Imap

Timeline

PublishedAug 31

Latest updateMay 3

Description

POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDuniversity_of_washington/imap4.5

🔴Vulnerability Details

GHSA

GHSA-p8r8-6wrj-xcvf: POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows loc↗2022-05-03

▶

CVEList

CVE-2000-1197: POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows loc↗2001-09-12

▶