CVE-1999-0920
University OF Washington Imap - Buffer Overflow
Title source: ruleDescription
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Chris Evans · cremotelinux
https://www.exploit-db.com/exploits/19226
metasploit
WORKING POC
by aushack · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/pop2/uw_fileretrieval.rb
Scores
EPSS
0.7354
EPSS Percentile
98.8%
Classification
Status
draft
Affected Products (2)
university_of_washington/imap
university_of_washington/pop2d
Timeline
Published
May 26, 1999
Tracked Since
Feb 18, 2026