CVE-2002-1782
published 2002-12-31CVE-2002-1782: The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user…
PriorityP411low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.34%
26.3th percentile
The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | uw-imap | < uw-imap 7:2002ddebian1-2 (bookworm) | uw-imap 7:2002ddebian1-2 (bookworm) |
| university_of_washington | uw-imap | — | — |
| university_of_washington | uw-imap | >= 0 < 7:2002ddebian1-2 | 7:2002ddebian1-2 |
| university_of_washington | uw-imap | >= 0 < 7:2002ddebian1-2 | 7:2002ddebian1-2 |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
osv2.1LOW
vendor_debian2.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2002-1782: uw-imap - The default configuration of University of Washington IMAP daemon (wu-imapd), wh...
vendor_debian·2002·CVSS 2.1
CVE-2002-1782 [LOW] CVE-2002-1782: uw-imap - The default configuration of University of Washington IMAP daemon (wu-imapd), wh...
The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user.
Scope: local
bookworm: resolved (fixed in 7:2002ddebian1-2)
bullseye: resolved (fixed in 7:2002ddebian1-2)
GHSA
GHSA-mrc9-g9w2-j5g5: The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a loca
ghsa_unreviewed·2022-04-30
CVE-2002-1782 [LOW] GHSA-mrc9-g9w2-j5g5: The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a loca
The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user.
OSV
CVE-2002-1782: The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a loca
osv·2002-12-31·CVSS 2.1
CVE-2002-1782 [LOW] CVE-2002-1782: The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a loca
The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://online.securityfocus.com/archive/1/275127http://www.security.nnov.ru/advisories/courier.asphttp://www.securityfocus.com/bid/4909http://www.washington.edu/imap/IMAP-FAQs/index.html#5.1https://exchange.xforce.ibmcloud.com/vulnerabilities/9238http://online.securityfocus.com/archive/1/275127http://www.security.nnov.ru/advisories/courier.asphttp://www.securityfocus.com/bid/4909http://www.washington.edu/imap/IMAP-FAQs/index.html#5.1https://exchange.xforce.ibmcloud.com/vulnerabilities/9238
2002-12-31
Published