Vulnerability Description
Multiple integer signedness errors in (1) imapcommon.c, (2) main.c, (3) request.c, and (4) select.c for up-imapproxy IMAP proxy 1.2.2 allow remote attackers to cause a denial of service (server crash) and possibly leak sensitive information via certain literal values that are not properly handled when using the IMAP_Line_Read function.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Imap Proxy | Imap Proxy | 1.2.2 |
References
- http://marc.info/?l=bugtraq&m=109995749510773&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17999
- http://marc.info/?l=bugtraq&m=109995749510773&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17999
FAQ
What is CVE-2004-1035?
CVE-2004-1035 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Multiple integer signedness errors in (1) imapcommon.c, (2) main.c, (3) request.c, and (4) select.c for up-imapproxy IMAP proxy 1.2.2 allow remote attackers to cause a denial of service (server crash)...
How severe is CVE-2004-1035?
CVE-2004-1035 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1035?
Check the references section above for vendor advisories and patch information. Affected products include: Imap Proxy Imap Proxy.