Known Vulnerabilities for products from Carnegie Mellon University
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Carnegie Mellon University".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2009-0688 | Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code ... | 7.5 - HIGH | 2009-05-15 | 2017-09-29 |
| CVE-2006-0250 | Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers ... | 6.4 - MEDIUM | 2006-01-18 | 2018-10-19 |
| CVE-2004-1067 | Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which m... | 10 - HIGH | 2005-01-10 | 2017-07-11 |
| CVE-2004-1015 | Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote at... | 10 - HIGH | 2005-01-10 | 2017-07-11 |
| CVE-2004-1013 | The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execut... | 10 - HIGH | 2005-01-10 | 2016-12-08 |
| CVE-2004-1012 | The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execut... | 10 - HIGH | 2005-01-10 | 2017-07-11 |
| CVE-2004-1011 | Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote at... | 10 - HIGH | 2005-01-10 | 2017-07-11 |
| CVE-2002-1580 | Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a ... | 7.5 - HIGH | 2004-06-14 | 2017-07-11 |
| CVE-2001-1154 | Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) ... | 5 - MEDIUM | 2001-08-30 | 2017-12-19 |
| CVE-2000-0956 | cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow ... | 4.6 - MEDIUM | 2000-12-19 | 2017-10-10 |