Lucene search
Ubuntu.comUB:CVE-2011-3372HistoryDec 24, 2011 - 12:00 a.m.
CVE-2011-3372
2011-12-2400:00:00
ubuntu.com
ubuntu.com
11
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.9%
imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before 2.4.12
allows remote attackers to bypass authentication by sending an AUTHINFO
USER command without sending an additional AUTHINFO PASS command.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | cyrus-imapd-2.2 | < 2.2.13-19squeeze2build0.10.04.1 | UNKNOWN |
| ubuntu | 10.10 | noarch | cyrus-imapd-2.2 | < 2.2.13-19squeeze2build0.10.10.1 | UNKNOWN |
Related
veracode
veracode
Authentication Bypass
2020-04-10 01:06:54
cve
cve
CVE-2011-3372
2022-10-03 16:15:07
altlinux
altlinux
Security fix for the ALT Linux 7 package cyrus-imapd version 2.4.12-alt1
2011-10-06 00:00:00
Security fix for the ALT Linux 8 package cyrus-imapd version 2.4.12-alt1
2011-10-06 00:00:00
prion
prion
Authentication flaw
2011-12-24 19:55:00
cvelist
cvelist
CVE-2011-3372
2022-10-03 16:15:07
nvd
nvd
CVE-2011-3372
2011-12-24 19:55:01
nessus
nessus
Cyrus IMAPd NNTP AUTHINFO USER Command Parsing Authentication Bypass
2011-12-19 00:00:00
SuSE 10 Security Update : cyrus-imapd (ZYPP Patch Number 7786)
2011-10-24 00:00:00
RHEL 4 / 5 / 6 : cyrus-imapd (RHSA-2011:1508)
2011-12-02 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2011-27)
2015-09-08 00:00:00
CentOS Update for cyrus-imapd CESA-2011:1508 centos5 x86_64
2012-07-30 00:00:00
Debian: Security Advisory (DSA-2318-1)
2011-10-16 00:00:00
centos
centos
cyrus, perl security update
2011-12-01 17:48:28
debian
debian
[SECURITY] [DSA 2318-1] cyrus-imapd-2.2 security update
2011-10-06 23:49:01
oraclelinux
oraclelinux
cyrus-imapd security update
2011-12-01 00:00:00
amazon
amazon
Medium: cyrus-imapd
2011-12-09 11:17:00
securityvulns
securityvulns
cyrus-imapd nntp server security vulnerabilities
2011-10-10 00:00:00
[SECURITY] [DSA 2318-1] cyrus-imapd-2.2 security update
2011-10-10 00:00:00
osv
osv
cyrus-imapd-2.2 - several
2011-10-06 00:00:00
redhat
redhat
(RHSA-2011:1508) Moderate: cyrus-imapd security update
2011-12-01 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.9%
Related for UB:CVE-2011-3372