CVE-2002-0379

University of Washington uw-imap - Authenticated Buffer Overflow via Long BODY Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-0379. PoCs published by 0x3a0x29 crew, korty.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Wu-imapd (CVE-2002-0379) by sending a maliciously crafted PARTIAL command after authentication. It includes shellcode to spawn a shell and leverages a hardcoded return address for Debian 2.2.

Description

Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request.

Exploits (2)

exploitdb WORKING POC VERIFIED
by 0x3a0x29 crew · cremotelinux
https://www.exploit-db.com/exploits/21443

This exploit targets a buffer overflow vulnerability in Wu-imapd (CVE-2002-0379) by sending a maliciously crafted PARTIAL command after authentication. It includes shellcode to spawn a shell and leverages a hardcoded return address for Debian 2.2.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Wu-imapd 2000.287 (with legacy RFC 1730 support)
Auth required
Prerequisites: Valid user credentials · Legacy RFC 1730 support enabled · Target running vulnerable Wu-imapd version
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by korty · cremotelinux
https://www.exploit-db.com/exploits/21442

This exploit targets a buffer overflow vulnerability in Wu-imapd (CVE-2002-0379) by sending a maliciously crafted CAPABILITY request. It includes shellcode to spawn a shell and demonstrates remote code execution on vulnerable systems.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Wu-imapd (versions with legacy RFC 1730 support, e.g., imapd 2001.313 and imap-2001.315 with RFC 1730 enabled)
Auth required
Prerequisites: Valid user credentials · Legacy RFC 1730 support enabled · Network access to the IMAP service
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (12)

Core 12
Core References
Various Sources vendor-advisory x_refsource_engarde
http://www.linuxsecurity.com/advisories/other_advisory-2120.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4713
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102107222100529&w=2
Various Sources x_refsource_confirm
http://www.washington.edu/imap/buffer.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2002-092.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/10803
Various Sources vendor-advisory x_refsource_conectiva
http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000487
Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp
http://online.securityfocus.com/advisories/4167
Various Sources vendor-advisory x_refsource_caldera
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-021.0.txt
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9055.php
Various Sources vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-034.php
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/961489

Scores

EPSS 0.1935
EPSS Percentile 97.0%

Details

Status published
Products (4)
university_of_washington/uw-imap 2000.283
university_of_washington/uw-imap 2000.284
university_of_washington/uw-imap 2000.287
university_of_washington/uw-imap 2000.315
Published Jun 25, 2002
Tracked Since Feb 18, 2026