Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
UW pop2d FOLD命令远程缓冲区溢出漏洞
Vulnerability Description
pop2d是University of Washington实现的一个开放源码的POP服务器。 pop2d 4.4及以前版本存在一个缓冲区溢出漏洞,恶意的远程攻击者可以利用该漏洞获得主机的"nobody"用户权限。 pop2和pop3服务器支持"anonymous proxy",远程用户可以用这个指令打开其它有合法账号服务器的IMAP mailbox。登陆以后,FOLD命令的一个参数会引起基于堆栈的缓冲溢出。
CVSS Information
N/A
Vulnerability Type
N/A