📦

imap

Vendor: cyrus

Actively Exploited 0 CISA KEV List

PoC / Exploits 4 Code Available

Total RCEs 2 Remote Access

Total CVEs 28 Total Indexed

Avg. EPSS 13.22% Exploit Prob.

Latest CVE CVE-2021-33582 Sep 01

Security Vulnerability Index

Page 2 / 3

2.1 CVSS

CVE-2000-1197

POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.

EPSS: 0.08%

Severity: LOW

Aug 31, 2001

7.5 CVSS

CVE-2000-0847

RCE

Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.

EPSS: 1.43%

Severity: HIGH

Nov 14, 2000

7.5 CVSS

CVE-2000-0284

Exploit Found

Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.

EPSS: 78.73%

Severity: HIGH

Apr 16, 2000

10.0 CVSS

CVE-1999-0920

Exploit Found

Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.

EPSS: 73.54%

Severity: HIGH

May 26, 1999

0.0 CVSS

CVE-1999-0005

EPSS: 0.00%

Severity:

Jan 01, 0001

Displaying 5 of 28 Total Entries

1 2 3

Total 3 Sections