Bugtraq mailing list archives

IMAPD security problems ?

From: zvika () aeserv technion ac il (Zvi Bar-Deroma)
Date: Thu, 4 Jul 1996 15:51:18 +0200


Hi,

One or 2 months ago there were some discussions concerning possible
vulnerabilities in POPd (+ a suggestion for a "safe" server). I wonder
whether these (or any other) vulnerabilities are known to exist in IMAP
(specifically the version available from the uni. of Washington, home of
"pine"). I did check that a "simple" simulated crack fails - after 3 bad
pw's the connection is closed and one has to reconnect.

/Zvika


Zvika Bar-Deroma
Systems and Network manager                       Phone: (+972)-4-829-2706
Faculty of Aerospace Engineering,                 Fax  : (+972)-4-823-1848
Technion                                          Home phone:
Haifa 32000                                              (+972)-4-823-5562
Israel

Internet:   zvika () aeserv technion ac il

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Current thread:

Re: Solaris mailx hole, (continued)
- - Re: Solaris mailx hole Casper Dik (Jul 02)
    - Re: Solaris mailx hole Andy Dills (Jul 02)
    - CD4300 series BUG DANIEL .D .EZEKIEL (Jul 02)
  - Re: BoS: Re: Solaris mailx hole Travis Hassloch x231 (Jul 02)
  - Re: Solaris mailx hole Dave Roberts (Jul 03)
    - Re: Solaris mailx hole Andy Dills (Jul 03)
    - [8lgm]-Advisory-26.UNIX.rdist.20-3-1996 [Forwarded e-mail from Jeff Uphoff (Jul 03)
    - BoS: *** SECURITY ALERT *** (fwd) Michael Brennen (Jul 03)
    - BoS: *** SECURITY ALERT *** (fwd) Mark_W_Loveless () smtp bnr com (Jul 04)
    - IIS bug test Paolo Taraboi (Jul 04)
    - IMAPD security problems ? Zvi Bar-Deroma (Jul 04)
    - Re: IMAPD security problems ? Ian MacPhedran (Jul 04)
- Re: Solaris mailx hole Josef Buergler (Jul 02)
- Re: Solaris mailx hole Rick Otten (Jul 03)