Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Ubuntu Local Security Checks --> Category: infos

USN87-1 : cyrus21-imapd vulnerability Vulnerability Scan


Vulnerability Scan Summary
cyrus21-imapd vulnerability

Detailed Explanation for this Vulnerability Test

Synopsis :

These remote packages are missing security patches :
- cyrus21-admin
- cyrus21-clients
- cyrus21-common
- cyrus21-dev
- cyrus21-doc
- cyrus21-imapd
- cyrus21-murder
- cyrus21-pop3d
- libcyrus-imap-perl21


Description :

Sean Larsson discovered a buffer overflow in the IMAP "annotate"
extension. This possibly allowed an authenticated IMAP client to
execute arbitrary code with the rights of the Cyrus IMAP server.

Solution :

Upgrade to :
- cyrus21-admin-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-clients-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-common-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-dev-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-doc-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-imapd-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-murder-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- cyrus21-pop3d-2.1.16-6ubuntu0.3 (Ubuntu 4.10)
- libcyrus-imap-perl21-2.1.16-6ubuntu0.3 (Ubuntu 4.10)



Threat Level: High


Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.