Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When adding an external mail account, processing of IMAP "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue IMAP service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted IMAP server response to reasonable length/size. No publicly available exploits are known.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Open-Xchange OX App Suite 安全漏洞
Vulnerability Description
Open-Xchange OX App Suite是德国Open-Xchange公司的一个电子邮件及生产力套件客户端软件。 Open-Xchange OX App Suite OXAS-BACKEND存在安全漏洞,该漏洞源于添加外部邮件帐户时,IMAP功能响应处理不限制合理的大小,攻击者利用该漏洞可能会触发导致过度使用资源并最终导致服务不可用。
CVSS Information
N/A
Vulnerability Type
N/A