Ubuntu Security Update USN-4566-1: Cyrus IMAP Server vulnerabilities

Thread starter LinuxBot
Start date Oct 6, 2020

LinuxBot

Member

Oct 6, 2020

It was dicovered that Cyrus IMAP Server could execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name. An attacker could use this vulnerability to cause a crash or possibly execute arbitrary code. (CVE-2019-11356) It was discovered that the Cyrus IMAP Server allow users to create any mailbox with administrative privileges. A local attacker could use this to obtain sensitive information. (CVE-2019-19783)

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

osprey

Total: 870 (members: 2, guests: 868)

Latest posts

Why doesn't the dd command produce a bootable clone disk?
- Latest: osprey
- 4 minutes ago
General Linux Questions
Today's article is a very basic one...
- Latest: blunix
- 39 minutes ago
Command Line
In person help
- Latest: blunix
- Today at 9:22 PM
General Linux Questions
firefox "server not found" problem
- Latest: blunix
- Today at 9:11 PM
Getting Started
K
Neofetch seems to have come to an end unless someone forks it
- Latest: KGIII
- Today at 7:02 PM
Command Line

Top