GSD-2008-5005
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and '+' character followed by a long string, processed by the tmail or possibly dmail program.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2008-5005",
"description": "Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and \u0027+\u0027 character followed by a long string, processed by the tmail or possibly dmail program.",
"id": "GSD-2008-5005",
"references": [
"https://www.suse.com/security/cve/CVE-2008-5005.html",
"https://www.debian.org/security/2008/dsa-1685",
"https://access.redhat.com/errata/RHSA-2009:0275"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2008-5005"
],
"details": "Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and \u0027+\u0027 character followed by a long string, processed by the tmail or possibly dmail program.",
"id": "GSD-2008-5005",
"modified": "2023-12-13T01:23:04.495765Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5005",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and \u0027+\u0027 character followed by a long string, processed by the tmail or possibly dmail program."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "oval:org.mitre.oval:def:10485",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10485"
},
{
"name": "http://panda.com/imap/",
"refsource": "CONFIRM",
"url": "http://panda.com/imap/"
},
{
"name": "[oss-security] 20081103 CVE request - uw-imap",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/3"
},
{
"name": "FEDORA-2008-9396",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00082.html"
},
{
"name": "http://www.bitsec.com/en/rad/bsa-081103.txt",
"refsource": "MISC",
"url": "http://www.bitsec.com/en/rad/bsa-081103.txt"
},
{
"name": "http://www.bitsec.com/en/rad/bsa-081103.c",
"refsource": "MISC",
"url": "http://www.bitsec.com/en/rad/bsa-081103.c"
},
{
"name": "http://support.avaya.com/elmodocs2/security/ASA-2009-065.htm",
"refsource": "CONFIRM",
"url": "http://support.avaya.com/elmodocs2/security/ASA-2009-065.htm"
},
{
"name": "[oss-security] 20081103 Re: CVE request - uw-imap",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/5"
},
{
"name": "http://www.washington.edu/alpine/tmailbug.html",
"refsource": "MISC",
"url": "http://www.washington.edu/alpine/tmailbug.html"
},
{
"name": "4570",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/4570"
},
{
"name": "20081103 Bitsec Security Advisory: UW/Panda IMAP [dt]mail buffer overflow",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/498002/100/0/threaded"
},
{
"name": "[imap-uw] 20081031 Security bug in tmail and dmail",
"refsource": "MLIST",
"url": "http://mailman2.u.washington.edu/pipermail/imap-uw/2008-October/002268.html"
},
{
"name": "DSA-1685",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2008/dsa-1685"
},
{
"name": "32483",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32483"
},
{
"name": "32072",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/32072"
},
{
"name": "uwimapd-tmail-bo(46281)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46281"
},
{
"name": "33142",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33142"
},
{
"name": "FEDORA-2008-9383",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00058.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=469667",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=469667"
},
{
"name": "RHSA-2009:0275",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2009-0275.html"
},
{
"name": "20081103 Bitsec Security Advisory: UW/Panda IMAP [dt]mail buffer overflow",
"refsource": "FULLDISC",
"url": "http://marc.info/?l=full-disclosure\u0026m=122572590212610\u0026w=4"
},
{
"name": "[imap-uw] 20081031 Security bug in tmail and dmail",
"refsource": "MLIST",
"url": "http://mailman2.u.washington.edu/pipermail/imap-uw/2008-October/002267.html"
},
{
"name": "33996",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33996"
},
{
"name": "MDVSA-2009:146",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:146"
},
{
"name": "32512",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32512"
},
{
"name": "[oss-security] 20081103 Re: CVE request - uw-imap",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/4"
},
{
"name": "ADV-2008-3042",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/3042"
},
{
"name": "1021131",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1021131"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2007:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2007c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.999:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.99:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2005:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2006:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.99999:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.9999:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2002:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:2.00:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:1.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.98:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.83:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.82:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2003:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:imap_toolkit:2004:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:1.00:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.999999:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.81:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:university_of_washington:alpine:0.80:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5005"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and \u0027+\u0027 character followed by a long string, processed by the tmail or possibly dmail program."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20081103 Re: CVE request - uw-imap",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/5"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=469667",
"refsource": "CONFIRM",
"tags": [
"Patch"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=469667"
},
{
"name": "1021131",
"refsource": "SECTRACK",
"tags": [],
"url": "http://securitytracker.com/id?1021131"
},
{
"name": "[oss-security] 20081103 CVE request - uw-imap",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/3"
},
{
"name": "http://panda.com/imap/",
"refsource": "CONFIRM",
"tags": [],
"url": "http://panda.com/imap/"
},
{
"name": "[oss-security] 20081103 Re: CVE request - uw-imap",
"refsource": "MLIST",
"tags": [],
"url": "http://www.openwall.com/lists/oss-security/2008/11/03/4"
},
{
"name": "http://www.bitsec.com/en/rad/bsa-081103.txt",
"refsource": "MISC",
"tags": [],
"url": "http://www.bitsec.com/en/rad/bsa-081103.txt"
},
{
"name": "http://www.bitsec.com/en/rad/bsa-081103.c",
"refsource": "MISC",
"tags": [],
"url": "http://www.bitsec.com/en/rad/bsa-081103.c"
},
{
"name": "[imap-uw] 20081031 Security bug in tmail and dmail",
"refsource": "MLIST",
"tags": [],
"url": "http://mailman2.u.washington.edu/pipermail/imap-uw/2008-October/002268.html"
},
{
"name": "[imap-uw] 20081031 Security bug in tmail and dmail",
"refsource": "MLIST",
"tags": [
"Patch"
],
"url": "http://mailman2.u.washington.edu/pipermail/imap-uw/2008-October/002267.html"
},
{
"name": "32483",
"refsource": "SECUNIA",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/32483"
},
{
"name": "20081103 Bitsec Security Advisory: UW/Panda IMAP [dt]mail buffer overflow",
"refsource": "FULLDISC",
"tags": [],
"url": "http://marc.info/?l=full-disclosure\u0026m=122572590212610\u0026w=4"
},
{
"name": "FEDORA-2008-9383",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00058.html"
},
{
"name": "32512",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/32512"
},
{
"name": "FEDORA-2008-9396",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00082.html"
},
{
"name": "DSA-1685",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2008/dsa-1685"
},
{
"name": "33142",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/33142"
},
{
"name": "4570",
"refsource": "SREASON",
"tags": [],
"url": "http://securityreason.com/securityalert/4570"
},
{
"name": "33996",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/33996"
},
{
"name": "http://www.washington.edu/alpine/tmailbug.html",
"refsource": "MISC",
"tags": [],
"url": "http://www.washington.edu/alpine/tmailbug.html"
},
{
"name": "RHSA-2009:0275",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2009-0275.html"
},
{
"name": "32072",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/32072"
},
{
"name": "http://support.avaya.com/elmodocs2/security/ASA-2009-065.htm",
"refsource": "CONFIRM",
"tags": [],
"url": "http://support.avaya.com/elmodocs2/security/ASA-2009-065.htm"
},
{
"name": "MDVSA-2009:146",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:146"
},
{
"name": "ADV-2008-3042",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2008/3042"
},
{
"name": "uwimapd-tmail-bo(46281)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46281"
},
{
"name": "oval:org.mitre.oval:def:10485",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10485"
},
{
"name": "20081103 Bitsec Security Advisory: UW/Panda IMAP [dt]mail buffer overflow",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/498002/100/0/threaded"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-10-11T20:53Z",
"publishedDate": "2008-11-10T14:12Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…