alpine · CVE-2006-5262

Quick triage

Priority: not assigned 公開: Updated:

参照: Official alpine advisory, NVD, CVE.org · CVE 詳細

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2006-5262: no source package rows; 0 state rows across 0 repos (none); fixed 0, open 0.

Description:

CRLF injection vulnerability in lib/session.php in Hastymail 1.5 and earlier before 20061008 allows remote authenticated users to send arbitrary IMAP commands via a CRLF sequence in a mailbox name. NOTE: the attack crosses privilege boundaries if the IMAP server configuration prevents a user from establishing a direct IMAP session.

cvelogic Threat Intelligence