Vulnerability Report

CVE-2011-1926

RCE

Title: Cmu Cyrus Imap Server RCE

RCE

Proof Of Concept

No public PoC currently indexed for CVE-2011-1926.

CWE Category CWE-264

Published Date May 23, 2011

Modified Date Apr 29, 2026

Exploit Status Not Found

Score 5.1 CVSS v2.0

Exploit Probability (EPSS)

4.87%

Vulnerability Summary

CVE-2011-1926: The STARTTLS implementation in Cyrus IMAP Server before 2.4.7 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

Impacted Vendors

carnegie_mellon_university 1

cmu 1

Reference Links

http://bugzilla.cyrusimap.org/show_bug.cgi?id=3423 http://bugzilla.cyrusimap.org/show_bug.cgi?id=3424 http://git.cyrusimap.org/cyrus-imapd/patch/?id=523a91a5e86c8b9a27a138f04a3e3f2d8786f162 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061374.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061415.html http://openwall.com/lists/oss-security/2011/05/17/15 http://openwall.com/lists/oss-security/2011/05/17/2 http://secunia.com/advisories/44670 http://secunia.com/advisories/44876 http://secunia.com/advisories/44913 http://secunia.com/advisories/44928 http://www.cyrusimap.org/docs/cyrus-imapd/2.4.7/changes.php http://www.debian.org/security/2011/dsa-2242 http://www.debian.org/security/2011/dsa-2258 http://www.kb.cert.org/vuls/id/555316 http://www.mandriva.com/security/advisories?name=MDVSA-2011:100 http://www.redhat.com/support/errata/RHSA-2011-0859.html http://www.securitytracker.com/id?1025625 https://bugzilla.redhat.com/show_bug.cgi?id=705288 https://exchange.xforce.ibmcloud.com/vulnerabilities/67867 http://bugzilla.cyrusimap.org/show_bug.cgi?id=3423 http://bugzilla.cyrusimap.org/show_bug.cgi?id=3424 http://git.cyrusimap.org/cyrus-imapd/patch/?id=523a91a5e86c8b9a27a138f04a3e3f2d8786f162 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061374.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061415.html http://openwall.com/lists/oss-security/2011/05/17/15 http://openwall.com/lists/oss-security/2011/05/17/2 http://secunia.com/advisories/44670 http://secunia.com/advisories/44876 http://secunia.com/advisories/44913 http://secunia.com/advisories/44928 http://www.cyrusimap.org/docs/cyrus-imapd/2.4.7/changes.php http://www.debian.org/security/2011/dsa-2242 http://www.debian.org/security/2011/dsa-2258 http://www.kb.cert.org/vuls/id/555316 http://www.mandriva.com/security/advisories?name=MDVSA-2011:100 http://www.redhat.com/support/errata/RHSA-2011-0859.html http://www.securitytracker.com/id?1025625 https://bugzilla.redhat.com/show_bug.cgi?id=705288 https://exchange.xforce.ibmcloud.com/vulnerabilities/67867

CVSS v2.0

Source Entity [email protected]

Severity MEDIUM

5.1

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:N/AC:H/Au:N/C:P/I:P/A:P

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2011-1926 Exploits & PoCs (Proof Of Concept)

No public PoCs found in our database for this CVE.

April 29, 2026 MODIFIED

Vulnerability data updated via NVD.

April 11, 2025 MODIFIED

Vulnerability data or affected products updated.

May 23, 2011 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:N/AC:H/Au:N/C:P/I:P/A:P

Affected Stack

No specific products linked.