Posted on

Cyrus IMAP up to 3.0.3 imap/mboxlist.c mboxlist_do_find LIST Command information disclosure

A vulnerability was found in Cyrus IMAP up to 3.0.3. It has been declared as problematic. This vulnerability affects the function mboxlist_do_find of the file imap/mboxlist.c. Upgrading to version 3.0.4 eliminates this vulnerability. A possible mitigation has been published 5 days after the disclosure of the vulnerability.