• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Wu-imapd Partial Mailbox Attribute Remote Buffer Overflow Vulnerability

Solution:
Washington University has provided a patch. To see if you are running a vulnerable version of imap, run imap and give the command "x capability". Vulnerable versions display "IMAP4" as the first word after "COMPATIBILITY" - all others are not vulnerable.

HP has recommended applying the available fixes for Red Hat Linux to HP Secure OS 1.0.

Vendor fixes:


Washington University wu-imapd 2000.0 a

• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z

Washington University wu-imapd 2000.0 c

• Conectiva imap-2000c-10U60_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/imap-2000c-10U60_3cl.i386 .rpm


• Conectiva imap-2000c-10U70_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/imap-2000c-10U70_3cl.i386 .rpm


• Conectiva imap-2000c-12U8_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/imap-2000c-12U8_2cl.i386.rp m


• Conectiva imap-devel-2000c-10U60_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/imap-devel-2000c-10U60_3c l.i386.rpm


• Conectiva imap-devel-2000c-10U70_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/imap-devel-2000c-10U70_3c l.i386.rpm


• Conectiva imap-devel-2000c-12U8_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/imap-devel-2000c-12U8_2cl.i 386.rpm


• Conectiva imap-devel-static-2000c-10U60_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/imap-devel-static-2000c-1 0U60_3cl.i386.rpm


• Conectiva imap-devel-static-2000c-10U70_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/imap-devel-static-2000c-1 0U70_3cl.i386.rpm


• Conectiva imap-devel-static-2000c-12U8_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/imap-devel-static-2000c-12U 8_2cl.i386.rpm


• Conectiva imap-doc-2000c-10U60_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/imap-doc-2000c-10U60_3cl. i386.rpm


• Conectiva imap-doc-2000c-10U70_3cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/imap-doc-2000c-10U70_3cl. i386.rpm


• Conectiva imap-doc-2000c-12U8_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/imap-doc-2000c-12U8_2cl.i38 6.rpm


• EnGarde Secure Linux imap-2000c-1.0.24.i386.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i386/imap-2000c- 1.0.24.i386.rpm


• EnGarde Secure Linux imap-2000c-1.0.24.i686.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i686/imap-2000c- 1.0.24.i686.rpm


• EnGarde Secure Linux imap-2000c-1.0.24.src.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/SRPMS/imap-2000c -1.0.24.src.rpm


• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z

Washington University wu-imapd 2000.0 b

• MandrakeSoft imap-2000c-4.7mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.0/RPMS/imap-2000c-4.7 mdk.i586.rpm


• MandrakeSoft imap-2000c-4.7mdk.ppc.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ppc/8.0/RPMS/imap-2000c -4.7mdk.ppc.rpm


• MandrakeSoft imap-2000c-4.8mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/7.2/RPMS/imap-2000c-4.8 mdk.i586.rpm


• MandrakeSoft imap-2000c-4.9mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/1.0.1/RPMS/imap-2000c-4 .9mdk.i586.rpm


• MandrakeSoft imap-2000c-4.9mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/7.1/RPMS/imap-2000c-4.9 mdk.i586.rpm


• MandrakeSoft imap-2000c-7.1mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.1/RPMS/imap-2000c-7.1 mdk.i586.rpm


• MandrakeSoft imap-2000c-7.1mdk.ia64.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ia64/8.1/RPMS/imap-2000 c-7.1mdk.ia64.rpm


• MandrakeSoft imap-2001a-5.1mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.2/RPMS/imap-2001a-5.1 mdk.i586.rpm


• MandrakeSoft imap-2001a-5.1mdk.ppc.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ppc/8.2/RPMS/imap-2001a -5.1mdk.ppc.rpm


• MandrakeSoft imap-devel-2000c-4.7mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.0/RPMS/imap-devel-200 0c-4.7mdk.i586.rpm


• MandrakeSoft imap-devel-2000c-4.7mdk.ppc.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ppc/8.0/RPMS/imap-devel -2000c-4.7mdk.ppc.rpm


• MandrakeSoft imap-devel-2000c-4.8mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/7.2/RPMS/imap-devel-200 0c-4.8mdk.i586.rpm


• MandrakeSoft imap-devel-2000c-4.9mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/1.0.1/RPMS/imap-devel-2 000c-4.9mdk.i586.rpm


• MandrakeSoft imap-devel-2000c-4.9mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/7.1/RPMS/imap-devel-200 0c-4.9mdk.i586.rpm


• MandrakeSoft imap-devel-2000c-7.1mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.1/RPMS/imap-devel-200 0c-7.1mdk.i586.rpm


• MandrakeSoft imap-devel-2000c-7.1mdk.ia64.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ia64/8.1/RPMS/imap-deve l-2000c-7.1mdk.ia64.rpm


• MandrakeSoft imap-devel-2001a-5.1mdk.i586.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/8.2/RPMS/imap-devel-200 1a-5.1mdk.i586.rpm


• MandrakeSoft imap-devel-2001a-5.1mdk.ppc.rpm
  ftp://ftp.rpmfind.net/linux/D/Mandrake/updates/ppc/8.2/RPMS/imap-devel -2001a-5.1mdk.ppc.rpm


• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z

Washington University wu-imapd 2000.0

• Caldera imap-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1.1/Server/current/RPMS/ imap-2000-14.i386.rpm


• Caldera imap-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1.1/Workstation/current/ RPMS/imap-2000-14.i386.rpm


• Caldera imap-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/RPMS/im ap-2000-14.i386.rpm


• Caldera imap-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/RP MS/imap-2000-14.i386.rpm


• Caldera imap-devel-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1.1/Server/current/RPMS/ imap-devel-2000-14.i386.rpm


• Caldera imap-devel-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1.1/Workstation/current/ RPMS/imap-devel-2000-14.i386.rpm


• Caldera imap-devel-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/RPMS/im ap-devel-2000-14.i386.rpm


• Caldera imap-devel-2000-14.i386.rpm
  ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/RP MS/imap-devel-2000-14.i386.rpm


• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z

Washington University wu-imapd 2001.0

• Washington University wuimapd2001.patch
  http://downloads.securityfocus.com/vulnerabilities/patches/wuimapd2001 .patch


• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z

Washington University wu-imapd 2001.0 a

• EnGarde Secure Linux imap-2000c-1.0.24.src.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/SRPMS/imap-2000c -1.0.24.src.rpm


• Red Hat imap-2001a-1.62.0.alpha.rpm
  ftp://updates.redhat.com/6.2/en/os/alpha/imap-2001a-1.62.0.alpha.rpm


• Red Hat imap-2001a-1.62.0.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/imap-2001a-1.62.0.i386.rpm


• Red Hat imap-2001a-1.62.0.sparc.rpm
  ftp://updates.redhat.com/6.2/en/os/sparc/imap-2001a-1.62.0.sparc.rpm


• Red Hat imap-2001a-1.70.0.alpha.rpm
  ftp://updates.redhat.com/7.0/en/os/alpha/imap-2001a-1.70.0.alpha.rpm


• Red Hat imap-2001a-1.70.0.i386.rpm
  ftp://updates.redhat.com/7.0/en/os/i386/imap-2001a-1.70.0.i386.rpm


• Red Hat imap-2001a-1.71.0.alpha.rpm
  ftp://updates.redhat.com/7.1/en/os/alpha/imap-2001a-1.71.0.alpha.rpm


• Red Hat imap-2001a-1.71.0.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/imap-2001a-1.71.0.i386.rpm


• Red Hat imap-2001a-1.71.0.ia64.rpm
  ftp://updates.redhat.com/7.1/en/os/ia64/imap-2001a-1.71.0.ia64.rpm


• Red Hat imap-2001a-1.72.0.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/imap-2001a-1.72.0.i386.rpm


• Red Hat imap-2001a-1.72.0.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/imap-2001a-1.72.0.ia64.rpm


• Red Hat imap-devel-2001a-1.62.0.alpha.rpm
  ftp://updates.redhat.com/6.2/en/os/alpha/imap-devel-2001a-1.62.0.alpha .rpm


• Red Hat imap-devel-2001a-1.62.0.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/imap-devel-2001a-1.62.0.i386.r pm


• Red Hat imap-devel-2001a-1.62.0.sparc.rpm
  ftp://updates.redhat.com/6.2/en/os/sparc/imap-devel-2001a-1.62.0.sparc .rpm


• Red Hat imap-devel-2001a-1.70.0.alpha.rpm
  ftp://updates.redhat.com/7.0/en/os/alpha/imap-devel-2001a-1.70.0.alpha .rpm


• Red Hat imap-devel-2001a-1.70.0.i386.rpm
  ftp://updates.redhat.com/7.0/en/os/i386/imap-devel-2001a-1.70.0.i386.r pm


• Red Hat imap-devel-2001a-1.71.0.alpha.rpm
  ftp://updates.redhat.com/7.1/en/os/alpha/imap-devel-2001a-1.71.0.alpha .rpm


• Red Hat imap-devel-2001a-1.71.0.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/imap-devel-2001a-1.71.0.i386.r pm


• Red Hat imap-devel-2001a-1.71.0.ia64.rpm
  ftp://updates.redhat.com/7.1/en/os/ia64/imap-devel-2001a-1.71.0.ia64.r pm


• Red Hat imap-devel-2001a-1.72.0.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/imap-devel-2001a-1.72.0.i386.r pm


• Red Hat imap-devel-2001a-1.72.0.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/imap-devel-2001a-1.72.0.ia64.r pm


• Trustix imap-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.1/RPMS/imap-2001a-2tr.i586 .rpm


• Trustix imap-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.2/RPMS/imap-2001a-2tr.i586 .rpm


• Trustix imap-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.5/RPMS/imap-2001a-2tr.i586 .rpm


• Trustix imap-devel-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.1/RPMS/imap-devel-2001a-2t r.i586.rpm


• Trustix imap-devel-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.2/RPMS/imap-devel-2001a-2t r.i586.rpm


• Trustix imap-devel-2001a-2tr.i586.rpm
  ftp://ftp.trustix.net/pub/Trustix/updates/1.5/RPMS/imap-devel-2001a-2t r.i586.rpm


• Washington University wuimapd2001.patch
  http://downloads.securityfocus.com/vulnerabilities/patches/wuimapd2001 .patch


• Washington University imapd-current
  ftp://ftp.cac.washington.edu/mail/imap.tar.Z