Lucene search
PRIOn knowledge basePRION:CVE-2011-3372HistoryDec 24, 2011 - 7:55 p.m.
Authentication flaw
2011-12-2419:55:00
PRIOn knowledge base
www.prio-n.com
6
imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before 2.4.12 allows remote attackers to bypass authentication by sending an AUTHINFO USER command without sending an additional AUTHINFO PASS command.
References
cyrusimap.org/mediawiki/index.php/Latest_Updates
git.cyrusimap.org/cyrus-imapd/commit/?id=77903669e04c9788460561dd0560b9c916519594
secunia.com/advisories/46093
secunia.com/secunia_research/2011-68
securitytracker.com/id?1026363
www.debian.org/security/2011/dsa-2318
www.mandriva.com/security/advisories?name=MDVSA-2011:149
www.redhat.com/support/errata/RHSA-2011-1508.html
bugzilla.redhat.com/show_bug.cgi?id=740822
Related
cve
cve
CVE-2011-3372
2022-10-03 16:15:07
altlinux
altlinux
Security fix for the ALT Linux 7 package cyrus-imapd version 2.4.12-alt1
2011-10-06 00:00:00
Security fix for the ALT Linux 8 package cyrus-imapd version 2.4.12-alt1
2011-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2011-3372
2011-12-24 00:00:00
cvelist
cvelist
CVE-2011-3372
2022-10-03 16:15:07
veracode
veracode
Authentication Bypass
2020-04-10 01:06:54
nvd
nvd
CVE-2011-3372
2011-12-24 19:55:01
nessus
nessus
Cyrus IMAPd NNTP AUTHINFO USER Command Parsing Authentication Bypass
2011-12-19 00:00:00
Scientific Linux Security Update : cyrus-imapd on SL4.x, SL5.x, SL6.x i386/x86_64
2012-08-01 00:00:00
openSUSE Security Update : cyrus-imapd (openSUSE-SU-2011:1170-1)
2014-06-13 00:00:00
openvas
openvas
RedHat Update for cyrus-imapd RHSA-2011:1508-01
2011-12-02 00:00:00
CentOS Update for cyrus-imapd CESA-2011:1508 centos5 i386
2011-12-02 00:00:00
CentOS Update for cyrus-imapd CESA-2011:1508 centos4 i386
2011-12-02 00:00:00
securityvulns
securityvulns
cyrus-imapd nntp server security vulnerabilities
2011-10-10 00:00:00
[SECURITY] [DSA 2318-1] cyrus-imapd-2.2 security update
2011-10-10 00:00:00
osv
osv
cyrus-imapd-2.2 - several
2011-10-06 00:00:00
centos
centos
cyrus, perl security update
2011-12-01 17:48:28
debian
debian
[SECURITY] [DSA 2318-1] cyrus-imapd-2.2 security update
2011-10-06 23:49:01
oraclelinux
oraclelinux
cyrus-imapd security update
2011-12-01 00:00:00
amazon
amazon
Medium: cyrus-imapd
2011-12-09 11:17:00
redhat
redhat
(RHSA-2011:1508) Moderate: cyrus-imapd security update
2011-12-01 00:00:00