PublicDate: 2005-01-10 05:00:00 UTC
Candidate: CVE-2004-1012
References:
 https://ubuntu.com/security/notices/USN-31-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1012
Description:
 The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and
 earlier allows remote authenticated users to execute arbitrary code via a
 certain command ("body[p") that is treated as a different command
 ("body.peek") and causes an index increment error that leads to an
 out-of-bounds memory corruption.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_cyrus21-imapd: released (2.1.18-2ubuntu2)
edgy_cyrus21-imapd: released (2.1.18-2ubuntu2)
feisty_cyrus21-imapd: released (2.1.18-2ubuntu2)
devel_cyrus21-imapd: DNE
upstream_cyrus21-imapd: needs-triage