| CVE-2000-0284 | | 0.09 | — | 0.79 | | Apr 16, 2000 | Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands. |
| CVE-1999-0920 | | 0.09 | — | 0.74 | | May 26, 1999 | Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. |
| CVE-1999-0005 | | 0.04 | — | 0.13 | | Jul 20, 1998 | Arbitrary command execution via IMAP buffer overflow in authenticate command. |
| CVE-1999-0042 | | 0.03 | — | 0.05 | | Apr 7, 1997 | Buffer overflow in University of Washington's implementation of IMAP and POP servers. |
| CVE-2008-5514 | | 0.00 | — | 0.01 | | Dec 23, 2008 | Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent attackers to cause a denial of service (crash) via an e-mail message that triggers a buffer overflow. |
| CVE-2000-1197 | | 0.00 | — | 0.00 | | Aug 31, 2001 | POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes. |
| CVE-2000-0847 | | 0.00 | — | 0.01 | | Nov 14, 2000 | Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header. |
