CVE-2009-2632
cyrus-imapd-2.2 kolab-cyrus-imapd - arbitrary code execution
EPSS 0.13%
Description
Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted SIEVE script, related to the incorrect use of the sizeof operator for determining buffer length, combined with an integer signedness error.
How to fix CVE-2009-2632
To remediate CVE-2009-2632, upgrade the affected package to a fixed version below.
- Debian/cyrus-imapd-2.2—upgrade to 2.2.13-14+lenny1 or later
- —upgrade to 2.2.13-10+etch4 or later
- —upgrade to 1:1.2.1-1 or later
- —upgrade to 1.0.rc15-2etch5 or later
- —upgrade to 2.2.13-2+etch2 or later
Is CVE-2009-2632 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (5)
- from 0, < 2.2.13-14+lenny1
- from 0, < 2.2.13-10+etch4
- from 0, < 1:1.2.1-1
- from 0, < 1.0.rc15-2etch5
- from 0, < 2.2.13-2+etch2