CVE-2004-1035

Name of the Vulnerable Software and Affected Versions: up-imapproxy IMAP proxy version 1.2.2

Description: The issue is caused by multiple integer signedness errors in several files, including imapcommon.c, main.c, request.c, and select.c. These errors can be exploited by remote attackers to cause a denial of service, resulting in a server crash, and potentially leak sensitive information. This is achieved by sending certain literal values that are not properly handled when using the IMAP Line Read function.

Recommendations: For up-imapproxy IMAP proxy version 1.2.2, consider disabling the IMAP Line Read function until a patch is available to prevent potential exploitation. Restrict access to the affected files, including imapcommon.c, main.c, request.c, and select.c, to minimize the risk of server crash and sensitive information leakage.