Slackware Advisory SSA:2005-310-06 Imapd Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2005-310-06.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2005-310-06

Insight

New imapd packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix an alleged security issue. It appears that there is a buffer overflow in the 'mail_valid_net_parse_work' function, but that the function may not be used (i.e. is dead code).

Severity

Classification

CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2006-357-03 seamonkey
Slackware Advisory SSA:2007-243-01 java (jre, jdk)
Slackware Advisory SSA:2006-142-02 zoo archiver overflow
Slackware Advisory SSA:2007-207-01 bind
Slackware Advisory SSA:2006-142-01 tetex PDF security

Slackware Advisory SSA:2005-310-06 imapd

Take action and discover your vulnerabilities