Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2004:043: cyrus-imapd Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the cyrus-imapd package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2004:043 (cyrus-imapd).
Stefan Esser reported various bugs within the Cyrus IMAP Server.
These include buffer overflows and out-of-bounds memory access
which could allow remote attackers to execute arbitrary commands
as root. The bugs occur in the pre-authentication phase, therefore
an update is strongly recommended.
Solution : http://www.suse.de/security/2004_43_cyrus_imapd.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.