CVE-2009-3235 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Dovecot

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121 — Stack-based Buffer Overflow8 documents7 sources

Severity

7.5HIGHNVD

OSV4.4

EPSS

2.8%

top 13.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dovecot Debian Dovecot

Timeline

PublishedSep 17

Latest updateMay 2

Description

Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, as derived from Cyrus libsieve, allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SIEVE script, as demonstrated by forwarding an e-mail message to a large number of recipients, a different vulnerability than CVE-2009-2632.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/dovecot< dovecot 1:1.2.1-1 (bookworm)

▶Debiandovecot/dovecot< 1:1.2.1-1+3

▶NVDdovecot/dovecot12 versions+11

Patches

Patch: dovecot.org ↗Patch: www.redhat.com ↗Patch: dovecot.org ↗

🔴Vulnerability Details

GHSA

GHSA-vm7h-xxvx-g2fw: Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1↗2022-05-02

▶

OSV

CVE-2009-3235: Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1↗2009-09-17

▶

📋Vendor Advisories

Ubuntu

Dovecot vulnerabilities↗2009-09-28

▶

Red Hat

cyrus-impad: CMU sieve buffer overflows↗2009-09-14

▶

Debian

CVE-2009-3235: dovecot - Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before ...↗2009

▶

💬Community

Bugzilla

CVE-2009-3235 cyrus-impad: CMU sieve buffer overflows↗2009-09-17

▶

Bugzilla

CVE-2009-2632 cyrus-imapd: buffer overflow in cyrus sieve↗2009-09-03

▶