Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely.
Software | From | Fixed in |
---|---|---|
university_of_washington / uw-imap | - | 2004f.x |
university_of_washington / uw-imap | 2004 | 2004.x |
university_of_washington / uw-imap | 2004a | 2004a.x |
university_of_washington / uw-imap | 2004b | 2004b.x |
university_of_washington / uw-imap | 2004c | 2004c.x |
university_of_washington / uw-imap | 2004d | 2004d.x |
university_of_washington / uw-imap | 2004e | 2004e.x |