CVE-1999-1224

high

Description

IMAP 4.1 BETA, and possibly other versions, does not properly handle the SIGABRT (abort) signal, which allows local users to crash the server (imapd) via certain sequences of commands, which causes a core dump that may contain sensitive password information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/349

http://marc.info/?l=bugtraq&m=87635124302928&w=2

Details

Source: Mitre, NVD

Published: 1997-10-08

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00075