Cyrus IMAP Server login Command Remote Overflow

This script is Copyright (C) 2002-2011 Paul Johnston, Westpoint Ltd


Synopsis :

The remote IMAP server is affected by a remote integer overflow
vulnerability.

Description :

According to its banner, the remote Cyrus IMAP server is vulnerable to
a pre-login buffer overrun.

An attacker without a valid login could exploit this, and would be
able to execute arbitrary commands as the owner of the Cyrus process.
This would allow full access to all users' mailboxes.

See also :

http://archives.neohapsis.com/archives/bugtraq/2002-12/0014.html

Solution :

If possible, upgrade to an unaffected version. However, at
the time of writing no official fix was available. There is a source
patch against 2.1.10 in the Bugtraq report.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Gain a shell remotely

Nessus Plugin ID: 11196 (cyrus_imap_prelogin_overflow.nasl)

Bugtraq ID:

CVE ID: