Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2015-12-03 12:59
Updated : 2023-02-12 15:15
NVD link : CVE-2015-8078
Mitre link : CVE-2015-8078
JSON object : View
CWE
CWE-189
Numeric Errors
Products Affected
cyrus
- imap
opensuse
- opensuse
- leap