CVE-2009-2632 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Dovecot

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121 — Stack-based Buffer Overflow14 documents8 sources

Severity

7.5HIGHNVD

NVD4.4OSV4.4

EPSS

0.1%

top 67.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dovecot Debian Dovecot CMU Cyrus Imap Server

Timeline

PublishedSep 8

Latest updateMay 2

Description

Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted SIEVE script, related to the incorrect use of the sizeof operator for determining buffer length, combined with an integer signedness error.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages4 packages

▶NVDcmu/cyrus_imap_server2.2.13, 2.3.14+1

▶debiandebian/dovecot< dovecot 1:1.2.1-1 (bookworm)

▶Debiandovecot/dovecot< 1:1.2.1-1+3

▶NVDdovecot/dovecot12 versions+11

Patches

Patch: www.debian.org ↗Patch: www.securityfocus.com ↗Patch: www.vupen.com ↗

🔴Vulnerability Details

GHSA

GHSA-vm7h-xxvx-g2fw: Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1↗2022-05-02

▶

GHSA

GHSA-f78m-3xxg-82w8: Buffer overflow in the SIEVE script component (sieve/script↗2022-05-02

▶

OSV

CVE-2009-3235: Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1↗2009-09-17

▶

OSV

CVE-2009-2632: Buffer overflow in the SIEVE script component (sieve/script↗2009-09-08

▶

💥Exploits & PoCs

Exploit-DB

libc/glob(3) - Resource Exhaustion / Remote ftpd-anonymous (Denial of Service)↗2010-10-07

▶

📋Vendor Advisories

Ubuntu

Dovecot vulnerabilities↗2009-09-28

▶

Red Hat

cyrus-impad: CMU sieve buffer overflows↗2009-09-14

▶

Red Hat

cyrus-imapd: buffer overflow in cyrus sieve↗2009-09-07

▶

Debian

CVE-2009-3235: dovecot - Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before ...↗2009

▶

Debian

CVE-2009-2632: dovecot - Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus...↗2009

▶

💬Community

Bugzilla

CVE-2009-3235 cyrus-impad: CMU sieve buffer overflows↗2009-09-17

▶

Bugzilla

CVE-2009-2632 cyrus-imapd: buffer overflow in cyrus sieve↗2009-09-03

▶