Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2015-8078

Опубликовано: 26 окт. 2015
Источник: redhat
CVSS2: 5.8

Описание

Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.

Отчет

Not vulnerable. This issue did not affect the versions of cyrus-imapd as shipped with Red Hat Enterprise Linux 5, 6 and 7, as they did not include the patch to fix CVE-2015-8076, which introduced the CVE-2015-8078 issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5cyrus-imapdNot affected
Red Hat Enterprise Linux 6cyrus-imapdNot affected
Red Hat Enterprise Linux 7cyrus-imapdNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1278380cyrus-imapd: Integer overflow in index_urlfetch

5.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2015-8078

ubuntu
около 10 лет назад

Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.

nvd логотип

CVE-2015-8078

nvd
около 10 лет назад

Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.

debian логотип

CVE-2015-8078

debian
около 10 лет назад

Integer overflow in the index_urlfetch function in imap/index.c in Cyr ...

github логотип

GHSA-5pfc-g3f2-6263

github
больше 3 лет назад

Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.

fstec логотип

BDU:2016-00364

fstec
около 10 лет назад

Уязвимость почтового сервера Cyrus IMAP и операционных систем openSUSE и OpenSUSE Leap, позволяющая нарушителю нарушить целостность и доступность защищаемой информации

5.8 Medium

CVSS2