CVE-2005-2933 - Vulnerability Details

Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Enterprise Linux Rhel Stronghold
University Of Washington	Uw-imap

Configuration 1 [-]

OR	cpe:2.3:a:university_of_washington:uw-imap::::::::
	cpe:2.3:a:university_of_washington:uw-imap:2004:::::::*
	cpe:2.3:a:university_of_washington:uw-imap:2004a:::::::*
	cpe:2.3:a:university_of_washington:uw-imap:2004b:::::::*
	cpe:2.3:a:university_of_washington:uw-imap:2004c:::::::*
	cpe:2.3:a:university_of_washington:uw-imap:2004d:::::::*
	cpe:2.3:a:university_of_washington:uw-imap:2004e:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 3
imap-1:2002d-12	cpe:/o:redhat:enterprise_linux:3	RHSA-2005:850	2005-12-06T00:00:00Z
php-0:4.3.2-30.ent	cpe:/o:redhat:enterprise_linux:3	RHSA-2006:0276	2006-04-25T00:00:00Z
Red Hat Enterprise Linux 4
libc-client-0:2002e-14	cpe:/o:redhat:enterprise_linux:4	RHSA-2005:848	2005-12-06T00:00:00Z
php-0:4.3.9-3.12	cpe:/o:redhat:enterprise_linux:4	RHSA-2006:0276	2006-04-25T00:00:00Z
Red Hat Enterprise Linux AS (Advanced Server) version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2006:0501	2006-05-23T00:00:00Z
Red Hat Enterprise Linux ES version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2006:0501	2006-05-23T00:00:00Z
Red Hat Enterprise Linux WS version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2006:0501	2006-05-23T00:00:00Z
Red Hat Linux Advanced Workstation 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2006:0501	2006-05-23T00:00:00Z
Stronghold 4.0 for Red Hat Enterprise Linux AS (version 2.1)
	cpe:/a:redhat:rhel_stronghold:4.0	RHSA-2006:0549	2006-07-27T00:00:00Z

References

Link	Providers
ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html
http://rhn.redhat.com/errata/RHSA-2006-0276.html
http://rhn.redhat.com/errata/RHSA-2006-0549.html
http://secunia.com/advisories/17062/
http://secunia.com/advisories/17148
http://secunia.com/advisories/17152
http://secunia.com/advisories/17215
http://secunia.com/advisories/17276
http://secunia.com/advisories/17336
http://secunia.com/advisories/17483
http://secunia.com/advisories/17928
http://secunia.com/advisories/17930
http://secunia.com/advisories/17950
http://secunia.com/advisories/18554
http://secunia.com/advisories/19832
http://secunia.com/advisories/20210
http://secunia.com/advisories/20222
http://secunia.com/advisories/20951
http://secunia.com/advisories/21252
http://secunia.com/advisories/21564
http://securityreason.com/securityalert/47
http://securitytracker.com/id?1015000
http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161
http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm
http://www.debian.org/security/2005/dsa-861
http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml
http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true
http://www.kb.cert.org/vuls/id/933601
http://www.mandriva.com/security/advisories?name=MDKSA-2005:189
http://www.mandriva.com/security/advisories?name=MDKSA-2005:194
http://www.novell.com/linux/security/advisories/2005_23_sr.html
http://www.redhat.com/support/errata/RHSA-2005-848.html
http://www.redhat.com/support/errata/RHSA-2005-850.html
http://www.redhat.com/support/errata/RHSA-2006-0501.html
http://www.securityfocus.com/archive/1/430296/100/0/threaded
http://www.securityfocus.com/archive/1/430303/100/0/threaded
http://www.securityfocus.com/bid/15009
http://www.vupen.com/english/advisories/2006/2685
http://www.washington.edu/imap/
https://exchange.xforce.ibmcloud.com/vulnerabilities/22518
https://nvd.nist.gov/vuln/detail/CVE-2005-2933
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858
https://www.cve.org/CVERecord?id=CVE-2005-2933

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-10-13T04:00:00

Updated: 2024-08-07T22:53:29.440Z

Reserved: 2005-09-15T00:00:00

Link: CVE-2005-2933

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2005-10-13T22:02:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2005-2933

Redhat

Severity : Moderate

Publid Date: 2005-10-04T00:00:00Z

Links: CVE-2005-2933 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-10-04T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (\") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "MDKSA-2005:194", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:194"}, {"name": "RHSA-2005:850", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-850.html"}, {"name": "17950", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17950"}, {"name": "21252", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21252"}, {"name": "17276", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17276"}, {"name": "17148", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17148"}, {"name": "20222", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20222"}, {"name": "20210", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20210"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm"}, {"name": "18554", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18554"}, {"name": "47", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/47"}, {"name": "17152", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17152"}, {"name": "RHSA-2006:0276", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2006-0276.html"}, {"name": "DSA-861", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-861"}, {"name": "20051004 iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html"}, {"name": "17062", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17062/"}, {"name": "oval:org.mitre.oval:def:9858", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858"}, {"name": "20051201-01-U", "tags": ["vendor-advisory", "x_refsource_SGI"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U"}, {"name": "15009", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/15009"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.washington.edu/imap/"}, {"name": "RHSA-2006:0501", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2006-0501.html"}, {"name": "RHSA-2005:848", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-848.html"}, {"name": "RHSA-2006:0549", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2006-0549.html"}, {"name": "20951", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20951"}, {"name": "20051004 UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true"}, {"name": "uw-imap-mailbox-name-bo(22518)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22518"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm"}, {"name": "FLSA:170411", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://www.securityfocus.com/archive/1/430296/100/0/threaded"}, {"name": "19832", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19832"}, {"name": "20060501-01-U", "tags": ["vendor-advisory", "x_refsource_SGI"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc"}, {"name": "17930", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17930"}, {"name": "1015000", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1015000"}, {"name": "VU#933601", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/933601"}, {"name": "GLSA-200510-10", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml"}, {"name": "SSA:2005-310-06", "tags": ["vendor-advisory", "x_refsource_SLACKWARE"], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161"}, {"name": "21564", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21564"}, {"name": "FLSA:184098", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://www.securityfocus.com/archive/1/430303/100/0/threaded"}, {"name": "MDKSA-2005:189", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:189"}, {"name": "17928", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17928"}, {"name": "17336", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17336"}, {"name": "ADV-2006-2685", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2685"}, {"name": "17215", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17215"}, {"name": "SUSE-SR:2005:023", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2005_23_sr.html"}, {"name": "17483", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17483"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-2933", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (\") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MDKSA-2005:194", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:194"}, {"name": "RHSA-2005:850", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-850.html"}, {"name": "17950", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17950"}, {"name": "21252", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21252"}, {"name": "17276", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17276"}, {"name": "17148", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17148"}, {"name": "20222", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20222"}, {"name": "20210", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20210"}, {"name": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm", "refsource": "CONFIRM", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm"}, {"name": "18554", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18554"}, {"name": "47", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/47"}, {"name": "17152", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17152"}, {"name": "RHSA-2006:0276", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2006-0276.html"}, {"name": "DSA-861", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2005/dsa-861"}, {"name": "20051004 iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html"}, {"name": "17062", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17062/"}, {"name": "oval:org.mitre.oval:def:9858", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858"}, {"name": "20051201-01-U", "refsource": "SGI", "url": "ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U"}, {"name": "15009", "refsource": "BID", "url": "http://www.securityfocus.com/bid/15009"}, {"name": "http://www.washington.edu/imap/", "refsource": "CONFIRM", "url": "http://www.washington.edu/imap/"}, {"name": "RHSA-2006:0501", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2006-0501.html"}, {"name": "RHSA-2005:848", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-848.html"}, {"name": "RHSA-2006:0549", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2006-0549.html"}, {"name": "20951", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20951"}, {"name": "20051004 UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "refsource": "IDEFENSE", "url": "http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true"}, {"name": "uw-imap-mailbox-name-bo(22518)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22518"}, {"name": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm", "refsource": "CONFIRM", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm"}, {"name": "FLSA:170411", "refsource": "FEDORA", "url": "http://www.securityfocus.com/archive/1/430296/100/0/threaded"}, {"name": "19832", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19832"}, {"name": "20060501-01-U", "refsource": "SGI", "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc"}, {"name": "17930", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17930"}, {"name": "1015000", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1015000"}, {"name": "VU#933601", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/933601"}, {"name": "GLSA-200510-10", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml"}, {"name": "SSA:2005-310-06", "refsource": "SLACKWARE", "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161"}, {"name": "21564", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21564"}, {"name": "FLSA:184098", "refsource": "FEDORA", "url": "http://www.securityfocus.com/archive/1/430303/100/0/threaded"}, {"name": "MDKSA-2005:189", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:189"}, {"name": "17928", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17928"}, {"name": "17336", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17336"}, {"name": "ADV-2006-2685", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2685"}, {"name": "17215", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17215"}, {"name": "SUSE-SR:2005:023", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2005_23_sr.html"}, {"name": "17483", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17483"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T22:53:29.440Z"}, "title": "CVE Program Container", "references": [{"name": "MDKSA-2005:194", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:194"}, {"name": "RHSA-2005:850", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2005-850.html"}, {"name": "17950", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17950"}, {"name": "21252", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21252"}, {"name": "17276", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17276"}, {"name": "17148", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17148"}, {"name": "20222", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20222"}, {"name": "20210", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20210"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm"}, {"name": "18554", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18554"}, {"name": "47", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/47"}, {"name": "17152", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17152"}, {"name": "RHSA-2006:0276", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2006-0276.html"}, {"name": "DSA-861", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2005/dsa-861"}, {"name": "20051004 iDEFENSE Security Advisory 10.04.05: UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html"}, {"name": "17062", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17062/"}, {"name": "oval:org.mitre.oval:def:9858", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858"}, {"name": "20051201-01-U", "tags": ["vendor-advisory", "x_refsource_SGI", "x_transferred"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U"}, {"name": "15009", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/15009"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.washington.edu/imap/"}, {"name": "RHSA-2006:0501", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2006-0501.html"}, {"name": "RHSA-2005:848", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2005-848.html"}, {"name": "RHSA-2006:0549", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2006-0549.html"}, {"name": "20951", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20951"}, {"name": "20051004 UW-IMAP Netmailbox Name Parsing Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true"}, {"name": "uw-imap-mailbox-name-bo(22518)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22518"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm"}, {"name": "FLSA:170411", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/430296/100/0/threaded"}, {"name": "19832", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/19832"}, {"name": "20060501-01-U", "tags": ["vendor-advisory", "x_refsource_SGI", "x_transferred"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc"}, {"name": "17930", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17930"}, {"name": "1015000", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1015000"}, {"name": "VU#933601", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/933601"}, {"name": "GLSA-200510-10", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml"}, {"name": "SSA:2005-310-06", "tags": ["vendor-advisory", "x_refsource_SLACKWARE", "x_transferred"], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161"}, {"name": "21564", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21564"}, {"name": "FLSA:184098", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/430303/100/0/threaded"}, {"name": "MDKSA-2005:189", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:189"}, {"name": "17928", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17928"}, {"name": "17336", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17336"}, {"name": "ADV-2006-2685", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2685"}, {"name": "17215", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17215"}, {"name": "SUSE-SR:2005:023", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2005_23_sr.html"}, {"name": "17483", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17483"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-2933", "datePublished": "2005-10-13T04:00:00", "dateReserved": "2005-09-15T00:00:00", "dateUpdated": "2024-08-07T22:53:29.440Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:university_of_washington:uw-imap:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D9B64B5-DB7C-4ACC-B686-A14F97CCFF1F", "versionEndIncluding": "2004f", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004:*:*:*:*:*:*:*", "matchCriteriaId": "ECF2722B-0003-4FC5-9201-B646960E91D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004a:*:*:*:*:*:*:*", "matchCriteriaId": "7969D25D-D6C5-4196-9C38-8FE327771174", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004b:*:*:*:*:*:*:*", "matchCriteriaId": "77BB3D9E-3462-41D5-AE85-4B77151E88EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004c:*:*:*:*:*:*:*", "matchCriteriaId": "00545D19-4721-4B0B-8D4D-E7220A044D46", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004d:*:*:*:*:*:*:*", "matchCriteriaId": "DA9DA399-4B7A-41ED-8532-D9C26059679B", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_washington:uw-imap:2004e:*:*:*:*:*:*:*", "matchCriteriaId": "D548F276-417F-4F32-82AB-C405B404C30C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (\") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely."}], "id": "CVE-2005-2933", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-10-13T22:02:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U"}, {"source": "cve@mitre.org", "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2006-0276.html"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2006-0549.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/17062/"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17148"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17152"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17215"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17276"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17336"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17483"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17928"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17930"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17950"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/18554"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/19832"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20210"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20222"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20951"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21252"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21564"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/47"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1015000"}, {"source": "cve@mitre.org", "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161"}, {"source": "cve@mitre.org", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm"}, {"source": "cve@mitre.org", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2005/dsa-861"}, {"source": "cve@mitre.org", "url": "http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/933601"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:189"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:194"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2005_23_sr.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2005-848.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2005-850.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2006-0501.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/430296/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/430303/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/15009"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2685"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.washington.edu/imap/"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22518"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0081.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2006-0276.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2006-0549.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/17062/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17148"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17152"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17215"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17276"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17336"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17483"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17928"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17930"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/17950"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/18554"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/19832"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/20210"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/20222"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/20951"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21252"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21564"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/47"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1015000"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.500161"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2005/dsa-861"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.gentoo.org/security/en/glsa/glsa-200510-10.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.idefense.com/application/poi/display?id=313&type=vulnerabilities&flashstatus=true"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/933601"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:189"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:194"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.novell.com/linux/security/advisories/2005_23_sr.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2005-848.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2005-850.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2006-0501.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/430296/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/430303/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/15009"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2685"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.washington.edu/imap/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22518"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9858"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2005:850", "cpe": "cpe:/o:redhat:enterprise_linux:3", "package": "imap-1:2002d-12", "product_name": "Red Hat Enterprise Linux 3", "release_date": "2005-12-06T00:00:00Z"}, {"advisory": "RHSA-2006:0276", "cpe": "cpe:/o:redhat:enterprise_linux:3", "package": "php-0:4.3.2-30.ent", "product_name": "Red Hat Enterprise Linux 3", "release_date": "2006-04-25T00:00:00Z"}, {"advisory": "RHSA-2005:848", "cpe": "cpe:/o:redhat:enterprise_linux:4", "package": "libc-client-0:2002e-14", "product_name": "Red Hat Enterprise Linux 4", "release_date": "2005-12-06T00:00:00Z"}, {"advisory": "RHSA-2006:0276", "cpe": "cpe:/o:redhat:enterprise_linux:4", "package": "php-0:4.3.9-3.12", "product_name": "Red Hat Enterprise Linux 4", "release_date": "2006-04-25T00:00:00Z"}, {"advisory": "RHSA-2006:0501", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1", "release_date": "2006-05-23T00:00:00Z"}, {"advisory": "RHSA-2006:0501", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux ES version 2.1", "release_date": "2006-05-23T00:00:00Z"}, {"advisory": "RHSA-2006:0501", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux WS version 2.1", "release_date": "2006-05-23T00:00:00Z"}, {"advisory": "RHSA-2006:0501", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Linux Advanced Workstation 2.1", "release_date": "2006-05-23T00:00:00Z"}, {"advisory": "RHSA-2006:0549", "cpe": "cpe:/a:redhat:rhel_stronghold:4.0", "product_name": "Stronghold 4.0 for Red Hat Enterprise Linux AS (version 2.1)", "release_date": "2006-07-27T00:00:00Z"}], "bugzilla": {"description": "security flaw", "id": "1617767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617767"}, "csaw": false, "details": ["Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (\") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely."], "name": "CVE-2005-2933", "public_date": "2005-10-04T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2005-2933\nhttps://nvd.nist.gov/vuln/detail/CVE-2005-2933"], "threat_severity": "Moderate"}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object