CVE-2004-1067
published 2005-01-10CVE-2004-1067: Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to…
PriorityP434critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.18%
91.4th percentile
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| carnegie_mellon_university | cyrus_imap_server | — | — |
| redhat | fedora_core | — | — |
| redhat | fedora_core | — | — |
| ubuntu | ubuntu_linux | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
cyrus21-imapd vulnerability
vendor_ubuntu·2004-12-02
CVE-2004-1067 cyrus21-imapd vulnerability
Title: cyrus21-imapd vulnerability
Summary: cyrus21-imapd vulnerability
Recently another buffer overflow has been discovered in the SASL
authentication module of the Cyrus IMAP server. An off-by-one
comparison error in the mysasl_canon_user() function could lead to a
missing termination of an user name string.
This vulnerability could allow remote, attacker-supplied machine code
to be executed in the context of the affected server process. Since
the IMAP server usually runs as unprivileged user 'cyrus', there is no
possibility of root privilege escalation.
Instructions: In general, a standard system update will make all the necessary changes.
GHSA
GHSA-5mmh-rg36-rhxw: Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2
ghsa_unreviewed·2022-04-29
CVE-2004-1067 [HIGH] GHSA-5mmh-rg36-rhxw: Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://asg.web.cmu.edu/cyrus/download/imapd/changes.htmlhttp://www.securityfocus.com/bid/11738https://exchange.xforce.ibmcloud.com/vulnerabilities/18333https://www.ubuntu.com/usn/usn-37-1/http://asg.web.cmu.edu/cyrus/download/imapd/changes.htmlhttp://www.securityfocus.com/bid/11738https://exchange.xforce.ibmcloud.com/vulnerabilities/18333https://www.ubuntu.com/usn/usn-37-1/
2005-01-10
Published