SUSE-SA:2004:043: cyrus-imapd

Critical Nessus Plugin ID 15923


The remote host is missing a vendor-supplied security patch


The remote host is missing the patch for the advisory SUSE-SA:2004:043 (cyrus-imapd).

Stefan Esser reported various bugs within the Cyrus IMAP Server.
These include buffer overflows and out-of-bounds memory access which could allow remote attackers to execute arbitrary commands as root. The bugs occur in the pre-authentication phase, therefore an update is strongly recommended.


Plugin Details

Severity: Critical

ID: 15923

File Name: suse_SA_2004_043.nasl

Version: $Revision: 1.7 $

Agent: unix

Published: 2004/12/07

Modified: 2016/12/27

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Reference Information

CVE: CVE-2004-1011, CVE-2004-1012, CVE-2004-1013