Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CyrusIMAPServer FETCH 远程代码执行漏洞
Vulnerability Description
Cyrus IMAP Server是一款开源的IMAP协议实现软件。 Cyrus IMAP Server2.2.x至2.2.8版本中存在远程执行任意代码漏洞。 FETCH命令参数解析存在缺陷,远程认证用户可通过类似"body[p", "binary[p", "binary[p"命令,引发内存越界,导致可执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A