Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Cyrus IMAP 2.5.x < 2.5.15, 3.0.x < 3.0.13 ACL Bypass Vulnerability
Information
Severity
Severity
Medium
Family
Family
General
CVSSv2 Base
CVSSv2 Base
4.0
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:S/C:N/I:P/A:N
Solution Type
Solution Type
Vendor Patch
Created
Created
4 years ago
Modified
Modified
4 years ago
Summary
Cyrus IMAP is prone to an ACL bypass vulnerability.
Insight
Insight
If sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a user with a mail account on the service can use a sieve script containing a fileinto directive to create any mailbox with administrator privileges, because of folder mishandling in autosieve_createfolder() in imap/lmtp_sieve.c.
Affected Software
Affected Software
Cyrus IMAP versions 2.5.0 - 2.5.14 and 3.0.0 - 3.0.12.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to version 2.5.15, 3.0.13 or later.