What is the severity of CVE-2011-1926?

CVE-2011-1926 has a moderate severity rating due to its potential to allow remote attackers to execute arbitrary commands during a TLS session.

How do I fix CVE-2011-1926?

To fix CVE-2011-1926, update Cyrus IMAP Server to version 2.4.6 or later, which addresses this vulnerability.

What versions of Cyrus IMAP Server are affected by CVE-2011-1926?

CVE-2011-1926 affects Cyrus IMAP Server versions 2.0.17 through 2.4.5.

Can CVE-2011-1926 be exploited remotely?

Yes, CVE-2011-1926 can be exploited remotely by attackers inserting malicious commands during the TLS handshake.

What are the potential consequences of CVE-2011-1926?

The consequences of CVE-2011-1926 may include unauthorized execution of commands resulting in data leakage or additional system compromise.

Vulnerability/
CVE-2011-1926

medium

5.1

CWE

264 77

17/5/2011

23/5/2011

6/8/2024

CVE-2011-1926: Command Injection

First published: Tue May 17 2011(Updated: )

It was found, that Cyrus IMAP recognized IMAP, LMTP, NNTP and POP3 protocol commands during plaintex to TLS session switch (by TLS protocol initialization). A remote attacker could use this flaw to insert plaintext, protocol relevant, commands into TLS protocol initialization messages, leading to execution of these commands during the ciphertext protocol phase, potentially allowing the attacker to steal the victim's mail or authentication credentials. References: [1] <a href="http://www.kb.cert.org/vuls/id/555316">http://www.kb.cert.org/vuls/id/555316</a> [2] <a href="http://bugzilla.cyrusimap.org/show_bug.cgi?id=3423">http://bugzilla.cyrusimap.org/show_bug.cgi?id=3423</a> Relevant upstream patch: [3] <a href="http://git.cyrusimap.org/cyrus-imapd/patch/?id=523a91a5e86c8b9a27a138f04a3e3f2d8786f162">http://git.cyrusimap.org/cyrus-imapd/patch/?id=523a91a5e86c8b9a27a138f04a3e3f2d8786f162</a>

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Cyrus IMAP Server	=2.2.12
Cyrus IMAP Server	=2.3.13
Cyrus IMAP Server	=2.2.13p1
Cyrus IMAP Server	=2.3.12
Cyrus IMAP Server	=2.4.1
Cyrus IMAP Server	=2.1.17
Cyrus IMAP Server	=2.4.5
Cyrus IMAP Server	=2.3.6
Cyrus IMAP Server	=2.3.0
Cyrus IMAP Server	=2.2.11
Cyrus IMAP Server	=2.3.14
Cyrus IMAP Server	=2.3.2
Cyrus IMAP Server	<=2.4.6
Cyrus IMAP Server	=2.4.0
Cyrus IMAP Server	=2.3.11
Cyrus IMAP Server	=2.3.8
Cyrus IMAP Server	=2.3.5
Cyrus IMAP Server	=2.2.9
Cyrus IMAP Server	=2.4.3
Cyrus IMAP Server	=2.4.4
Cyrus IMAP Server	=2.3.9
Cyrus IMAP Server	=2.3.10
Cyrus IMAP Server	=2.2.13
Cyrus IMAP Server	=2.1.16
Cyrus IMAP Server	=2.3.7
Cyrus IMAP Server	=2.2.8
Cyrus IMAP Server	=2.3.16
Cyrus IMAP Server	=2.0.17
Cyrus IMAP Server	=2.3.1
Cyrus IMAP Server	=2.4.2
Cyrus IMAP Server	=2.3.4
Cyrus IMAP Server	=2.2.10
Cyrus IMAP Server	=2.1.18
Cyrus IMAP Server	=2.3.3
Cyrus IMAP Server	=2.3.15

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1926?
CVE-2011-1926 has a moderate severity rating due to its potential to allow remote attackers to execute arbitrary commands during a TLS session.
How do I fix CVE-2011-1926?
To fix CVE-2011-1926, update Cyrus IMAP Server to version 2.4.6 or later, which addresses this vulnerability.
What versions of Cyrus IMAP Server are affected by CVE-2011-1926?
CVE-2011-1926 affects Cyrus IMAP Server versions 2.0.17 through 2.4.5.
Can CVE-2011-1926 be exploited remotely?
Yes, CVE-2011-1926 can be exploited remotely by attackers inserting malicious commands during the TLS handshake.
What are the potential consequences of CVE-2011-1926?
The consequences of CVE-2011-1926 may include unauthorized execution of commands resulting in data leakage or additional system compromise.

agent/type
agent/references
agent/remedy
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/last-modified-date
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2011-1926
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/cmu
canonical/cyrus imap server
version/cyrus imap server/2.2.12
version/cyrus imap server/2.3.13
version/cyrus imap server/2.2.13p1
version/cyrus imap server/2.3.12
version/cyrus imap server/2.4.1
version/cyrus imap server/2.1.17
version/cyrus imap server/2.4.5
version/cyrus imap server/2.3.6
version/cyrus imap server/2.3.0
version/cyrus imap server/2.2.11
version/cyrus imap server/2.3.14
version/cyrus imap server/2.3.2
version/cyrus imap server/2.4.6
version/cyrus imap server/2.4.0
version/cyrus imap server/2.3.11
version/cyrus imap server/2.3.8
version/cyrus imap server/2.3.5
version/cyrus imap server/2.2.9
version/cyrus imap server/2.4.3
version/cyrus imap server/2.4.4
version/cyrus imap server/2.3.9
version/cyrus imap server/2.3.10
version/cyrus imap server/2.2.13
version/cyrus imap server/2.1.16
version/cyrus imap server/2.3.7
version/cyrus imap server/2.2.8
version/cyrus imap server/2.3.16
version/cyrus imap server/2.0.17
version/cyrus imap server/2.3.1
version/cyrus imap server/2.4.2
version/cyrus imap server/2.3.4
version/cyrus imap server/2.2.10
version/cyrus imap server/2.1.18
version/cyrus imap server/2.3.3
version/cyrus imap server/2.3.15

CVE-2011-1926: Command Injection

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1926?

How do I fix CVE-2011-1926?

What versions of Cyrus IMAP Server are affected by CVE-2011-1926?

Can CVE-2011-1926 be exploited remotely?

What are the potential consequences of CVE-2011-1926?

Company

Resources

Contact