Known Vulnerabilities for Imap by University Of Washington

Listed below are 7 of the newest known vulnerabilities associated with "Imap" by "University Of Washington".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-35538 An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsanitized IMAP SEARCH command arguments could lead t... Not Provided 2026-04-03 2026-04-03
CVE-2025-23506 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in imsoftware WP IMAP Auth... Not Provided 2025-01-22 2026-04-01
CVE-2008-5514 Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-clien... 4.3 - MEDIUM 2008-12-23 2017-08-08
CVE-2000-1197 POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictabl... 2.1 - LOW 2001-08-31 2016-10-18
CVE-2000-0847 Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to exe... 7.5 - HIGH 2000-11-14 2017-10-10
CVE-2000-0284 Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST ... 7.5 - HIGH 2000-04-16 2008-09-10
CVE-1999-0920 Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. 10 - HIGH 1999-05-26 2008-09-09
CVE-1999-0042 Buffer overflow in University of Washington's implementation of IMAP and POP servers. 10 - HIGH 1997-04-07 2022-08-17
CVE-1999-0005 Arbitrary command execution via IMAP buffer overflow in authenticate command. 10 - HIGH 1998-07-20 2008-09-09
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report