Required CVE Record Information
Description
Stack-based buffer overflow in the split_wildmats function in nntpd.c in nntpd in Cyrus IMAP Server before 2.3.17 and 2.4.x before 2.4.11 allows remote attackers to execute arbitrary code via a crafted NNTP command.
References 17 Total
- hermes.opensuse.org: SUSE-SU-2011:1034 vendor-advisory
- secunia.com: 46064 third-party-advisory
- http://git.cyrusimap.org/cyrus-imapd/commit/?id=3244c18c928fa331f6927e2b8146abe90feafddd
- securityfocus.com: 49534 vdb-entry
- osvdb.org: 75307 vdb-entry
- lists.opensuse.org: openSUSE-SU-2011:1036 vendor-advisory
- asg.andrew.cmu.edu: [cyrus-announce] 20110908 Cyrus 2.4.11 Released mailing-list
- secunia.com: 45975 third-party-advisory
- exchange.xforce.ibmcloud.com: cyrus-splitwildmats-bo(69679) vdb-entry
- asg.andrew.cmu.edu: [cyrus-announce] 20110908 Cyrus 2.3.17 Released mailing-list
- redhat.com: RHSA-2011:1317 vendor-advisory
- secunia.com: 45938 third-party-advisory
- mandriva.com: MDVSA-2011:149 vendor-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=734926
- debian.org: DSA-2318 vendor-advisory
- http://git.cyrusimap.org/cyrus-imapd/commit/?id=0f8f026699829b65733c3081657b24e2174f4f4d
- securitytracker.com: 1026031 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 17 Total
- hermes.opensuse.org: SUSE-SU-2011:1034 vendor-advisoryx_transferred
- secunia.com: 46064 third-party-advisoryx_transferred
- http://git.cyrusimap.org/cyrus-imapd/commit/?id=3244c18c928fa331f6927e2b8146abe90feafddd x_transferred
- securityfocus.com: 49534 vdb-entryx_transferred
- osvdb.org: 75307 vdb-entryx_transferred
- lists.opensuse.org: openSUSE-SU-2011:1036 vendor-advisoryx_transferred
- asg.andrew.cmu.edu: [cyrus-announce] 20110908 Cyrus 2.4.11 Released mailing-listx_transferred
- secunia.com: 45975 third-party-advisoryx_transferred
- exchange.xforce.ibmcloud.com: cyrus-splitwildmats-bo(69679) vdb-entryx_transferred
- asg.andrew.cmu.edu: [cyrus-announce] 20110908 Cyrus 2.3.17 Released mailing-listx_transferred
- redhat.com: RHSA-2011:1317 vendor-advisoryx_transferred
- secunia.com: 45938 third-party-advisoryx_transferred
- mandriva.com: MDVSA-2011:149 vendor-advisoryx_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=734926 x_transferred
- debian.org: DSA-2318 vendor-advisoryx_transferred
- http://git.cyrusimap.org/cyrus-imapd/commit/?id=0f8f026699829b65733c3081657b24e2174f4f4d x_transferred
- securitytracker.com: 1026031 vdb-entryx_transferred