FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Cyrus IMAPd -- IMAPMAGICPLUS preauthentification overflow

Affected packages
2.2.4 <= cyrus-imapd <= 2.2.8

Details

VuXML ID 816fdd8b-3d14-11d9-8818-008088034841
Discovery 2004-11-06
Entry 2004-11-22

When the option imapmagicplus is activated on a server the PROXY and LOGIN commands suffer a standard stack overflow, because the username is not checked against a maximum length when it is copied into a temporary stack buffer. This bug is especially dangerous because it can be triggered before any kind of authentification took place.

References

CVE Name CVE-2004-1011
URL http://security.e-matters.de/advisories/152004.html