Описание
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and earlier allows remote attackers to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.17-5ubuntu0.1 |
| devel | not-affected | |
| edgy | released | 1.17-7ubuntu0.6.10.1 |
| feisty | released | 1.17-7ubuntu0.7.04.1 |
| gutsy | released | 1.17-7ubuntu0.7.10.1 |
| upstream | released | 1.17.1 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and earlier allows remote attackers to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism.
The format string protection mechanism in IMAPD for Perdition Mail Ret ...
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and earlier allows remote attackers to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism.
EPSS
7.5 High
CVSS2