Imp
by Imp
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2003-0025 | 0.02 | — | 0.24 | Jan 17, 2003 | Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3. | |||
| CVE-2000-0459 | 0.00 | — | 0.01 | Apr 22, 2000 | IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request. | |||
| CVE-2000-0458 | 0.00 | — | 0.00 | Apr 22, 2000 | The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive information. |
- CVE-2003-0025Jan 17, 2003risk 0.02cvss —epss 0.24
Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.
- CVE-2000-0459Apr 22, 2000risk 0.00cvss —epss 0.01
IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request.
- CVE-2000-0458Apr 22, 2000risk 0.00cvss —epss 0.00
The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive information.