PT-2004-2065 · Cyrus+1 · Cyrus Imap+1

Published

2004-12-02

Updated

2017-07-11

CVE-2004-1089

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X version 10.3.6

Description: The issue affects the Apple Mac OS X 10.3.6 server when Kerberos authentication and Cyrus IMAP are used, allowing local users to access mailboxes of other users.

Recommendations: For Apple Mac OS X version 10.3.6, consider disabling Kerberos authentication or restricting access to Cyrus IMAP until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1089

Affected Products

Cyrus Imap

Macos X

PT-2004-2065 · Cyrus+1 · Cyrus Imap+1

CVE-2004-1089

Related Identifiers

Affected Products

References · 6