7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.7%
Cyrus IMAP 2.5.7 Release Note states:
CVE-2015-8077, CVE-2015-8078: protect against integer overflow in urlfetch range checks
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | cyrus-imapd25 | = 2.5.0 | UNKNOWN |
FreeBSD | any | noarch | cyrus-imapd25 | < 2.5.7 | UNKNOWN |
FreeBSD | any | noarch | cyrus-imapd24 | = 2.4.0 | UNKNOWN |
FreeBSD | any | noarch | cyrus-imapd24 | < 2.4.18_2 | UNKNOWN |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8078
people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8077.html
people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8078.html
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8077
security-tracker.debian.org/tracker/CVE-2015-8077
security-tracker.debian.org/tracker/CVE-2015-8078