FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
927743d4-5ca9-11d9-a9e7-0001020eed82	up-imapproxy -- multiple vulnerabilities Timo Sirainen reports: There are various bugs in up-imapproxy which can crash it. Since up-imapproxy runs in a single process with each connection handled in a separate thread, any crash kills all the connections and stops listening for new ones. In 64bit systems it might be possible to make it leak data (mails, passwords, ..) from other connections to attacker's connection. However I don't think up-imapproxy actually works in any 64bit system so this is just a theoretical problem. Discovery 2004-11-17 Entry 2005-01-02 Modified 2008-02-27 up-imapproxy < 1.2.4 pop3proxy <= 1.1 CVE-2004-1035 11630 http://marc.theaimsgroup.com/?l=bugtraq&m=109995749510773

VuXML ID

Description

927743d4-5ca9-11d9-a9e7-0001020eed82

up-imapproxy -- multiple vulnerabilities

Timo Sirainen reports:

There are various bugs in up-imapproxy which can crash it. Since up-imapproxy runs in a single process with each connection handled in a separate thread, any crash kills all the connections and stops listening for new ones.

In 64bit systems it might be possible to make it leak data (mails, passwords, ..) from other connections to attacker's connection. However I don't think up-imapproxy actually works in any 64bit system so this is just a theoretical problem.

Discovery 2004-11-17
Entry 2005-01-02
Modified 2008-02-27
up-imapproxy

< 1.2.4

pop3proxy

<= 1.1

CVE-2004-1035
11630
http://marc.theaimsgroup.com/?l=bugtraq&m=109995749510773