Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: DBMail: dev

[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable

  

 
DBMail dev RSS feed   Index | Next | Previous | View Threaded


bugtrack at dbmail

May 2, 2008, 2:46 AM

Post #1 of 5 (355 views)
Permalink
[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable
The following issue has been SUBMITTED.
======================================================================
http://www.dbmail.org/mantis/view.php?id=693
======================================================================
Reported By: gordan
Assigned To:
======================================================================
Project: DBMail
Issue ID: 693
Category: Database layer
Reproducibility: always
Severity: minor
Priority: normal
Status: new
target:
======================================================================
Date Submitted: 02-May-08 11:46 CEST
Last Modified: 02-May-08 11:46 CEST
======================================================================
Summary: Single quotes in folder names render the folder
inaccessible and undeletable
Description:
A folder with single quotes in the name can be created, but cannot be
accessed/used/deleted via the IMAP interface.

This seems like a SQL quoting issue, which may indicate some potential SQL
injectionattack vectors being available.
======================================================================

Issue History
Date Modified Username Field Change
======================================================================
02-May-08 11:46 gordan New Issue
======================================================================

_______________________________________________
Dbmail-dev mailing list
Dbmail-dev[at]dbmail.org
http://twister.fastxs.net/mailman/listinfo/dbmail-dev


bugtrack at dbmail

May 2, 2008, 7:06 AM

Post #2 of 5 (347 views)
Permalink
[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable [In reply to]
A NOTE has been added to this issue.
======================================================================
http://www.dbmail.org/mantis/view.php?id=693
======================================================================
Reported By: gordan
Assigned To:
======================================================================
Project: DBMail
Issue ID: 693
Category: Database layer
Reproducibility: always
Severity: minor
Priority: normal
Status: new
target:
======================================================================
Date Submitted: 02-May-08 11:46 CEST
Last Modified: 02-May-08 16:06 CEST
======================================================================
Summary: Single quotes in folder names render the folder
inaccessible and undeletable
Description:
A folder with single quotes in the name can be created, but cannot be
accessed/used/deleted via the IMAP interface.

This seems like a SQL quoting issue, which may indicate some potential SQL
injectionattack vectors being available.
======================================================================

----------------------------------------------------------------------
paul - 02-May-08 16:06
----------------------------------------------------------------------
I just tested this against 2.2.10:

> nc imap.nfg.nl imap
* OK dbmail imap (protocol version 4r1) server 2.2.10 ready to run
x login testuser1 test
x OK LOGIN completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed
x create ta'Pal
x OK CREATE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
* LIST (\hasnochildren) "/" "ta'Pal"
x OK LIST completed
x delete ta'Pal
x OK DELETE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed

I don't see the problem, or at least, I'm unable to reproduce this. Could
be a client issue.

Issue History
Date Modified Username Field Change
======================================================================
02-May-08 11:46 gordan New Issue
02-May-08 16:06 paul Note Added: 0002541
======================================================================

_______________________________________________
Dbmail-dev mailing list
Dbmail-dev[at]dbmail.org
http://twister.fastxs.net/mailman/listinfo/dbmail-dev


bugtrack at dbmail

May 12, 2008, 8:11 AM

Post #3 of 5 (323 views)
Permalink
[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable [In reply to]
The following issue has been CLOSED
======================================================================
http://www.dbmail.org/mantis/view.php?id=693
======================================================================
Reported By: gordan
Assigned To:
======================================================================
Project: DBMail
Issue ID: 693
Category: Database layer
Reproducibility: always
Severity: minor
Priority: normal
Status: closed
target:
Resolution: unable to reproduce
Fixed in Version:
======================================================================
Date Submitted: 02-May-08 11:46 CEST
Last Modified: 12-May-08 17:11 CEST
======================================================================
Summary: Single quotes in folder names render the folder
inaccessible and undeletable
Description:
A folder with single quotes in the name can be created, but cannot be
accessed/used/deleted via the IMAP interface.

This seems like a SQL quoting issue, which may indicate some potential SQL
injectionattack vectors being available.
======================================================================

----------------------------------------------------------------------
paul - 02-May-08 16:06
----------------------------------------------------------------------
I just tested this against 2.2.10:

> nc imap.nfg.nl imap
* OK dbmail imap (protocol version 4r1) server 2.2.10 ready to run
x login testuser1 test
x OK LOGIN completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed
x create ta'Pal
x OK CREATE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
* LIST (\hasnochildren) "/" "ta'Pal"
x OK LIST completed
x delete ta'Pal
x OK DELETE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed

I don't see the problem, or at least, I'm unable to reproduce this. Could
be a client issue.

----------------------------------------------------------------------
paul - 12-May-08 17:11
----------------------------------------------------------------------
I'm closing this report due to lack of feedback.

Issue History
Date Modified Username Field Change
======================================================================
02-May-08 11:46 gordan New Issue
02-May-08 16:06 paul Note Added: 0002541
12-May-08 17:11 paul Note Added: 0002549
12-May-08 17:11 paul Status new => closed
12-May-08 17:11 paul Resolution open => unable to
reproduce
======================================================================

_______________________________________________
Dbmail-dev mailing list
Dbmail-dev[at]dbmail.org
http://twister.fastxs.net/mailman/listinfo/dbmail-dev


bugtrack at dbmail

May 13, 2008, 2:47 PM

Post #4 of 5 (317 views)
Permalink
[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable [In reply to]
The following issue has been REOPENED.
======================================================================
http://www.dbmail.org/mantis/view.php?id=693
======================================================================
Reported By: gordan
Assigned To:
======================================================================
Project: DBMail
Issue ID: 693
Category: Database layer
Reproducibility: always
Severity: minor
Priority: normal
Status: feedback
target:
======================================================================
Date Submitted: 02-May-08 11:46 CEST
Last Modified: 13-May-08 23:47 CEST
======================================================================
Summary: Single quotes in folder names render the folder
inaccessible and undeletable
Description:
A folder with single quotes in the name can be created, but cannot be
accessed/used/deleted via the IMAP interface.

This seems like a SQL quoting issue, which may indicate some potential SQL
injectionattack vectors being available.
======================================================================

----------------------------------------------------------------------
paul - 02-May-08 16:06
----------------------------------------------------------------------
I just tested this against 2.2.10:

> nc imap.nfg.nl imap
* OK dbmail imap (protocol version 4r1) server 2.2.10 ready to run
x login testuser1 test
x OK LOGIN completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed
x create ta'Pal
x OK CREATE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
* LIST (\hasnochildren) "/" "ta'Pal"
x OK LIST completed
x delete ta'Pal
x OK DELETE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed

I don't see the problem, or at least, I'm unable to reproduce this. Could
be a client issue.

----------------------------------------------------------------------
paul - 12-May-08 17:11
----------------------------------------------------------------------
I'm closing this report due to lack of feedback.

----------------------------------------------------------------------
gordan - 13-May-08 23:47
----------------------------------------------------------------------
In Thunderbird, create a folder called Mail. Inside that, create a folder
called "Foo Bar". Inside that, create a folder called "Foos' A&B".

This will produce a whole bunch of errors and after that the server will
keep saying "specified mailbox does not exist". Doing the same thing with
Courier IMAP as the back end works fine, so the problem appears to be
DBMail specific. Deleting the folder also fails. Checking the
dbmail_mailboxes table, the directory is there, but seems to be called
"Mail/Foo Bar/Foos' A&-B" (note the - after ampersand).

Issue History
Date Modified Username Field Change
======================================================================
02-May-08 11:46 gordan New Issue
02-May-08 16:06 paul Note Added: 0002541
12-May-08 17:11 paul Note Added: 0002549
12-May-08 17:11 paul Status new => closed
12-May-08 17:11 paul Resolution open => unable to
reproduce
13-May-08 23:47 gordan Status closed => feedback
13-May-08 23:47 gordan Resolution unable to reproduce =>
reopened
13-May-08 23:47 gordan Note Added: 0002551
======================================================================

_______________________________________________
Dbmail-dev mailing list
Dbmail-dev[at]dbmail.org
http://twister.fastxs.net/mailman/listinfo/dbmail-dev


bugtrack at dbmail

May 14, 2008, 1:18 AM

Post #5 of 5 (318 views)
Permalink
[DBMail 0000693]: Single quotes in folder names render the folder inaccessible and undeletable [In reply to]
The following issue has been CONFIRMED.
======================================================================
http://www.dbmail.org/mantis/view.php?id=693
======================================================================
Reported By: gordan
Assigned To:
======================================================================
Project: DBMail
Issue ID: 693
Category: Database layer
Reproducibility: always
Severity: minor
Priority: normal
Status: confirmed
target:
======================================================================
Date Submitted: 02-May-08 11:46 CEST
Last Modified: 14-May-08 10:18 CEST
======================================================================
Summary: Single quotes in folder names render the folder
inaccessible and undeletable
Description:
A folder with single quotes in the name can be created, but cannot be
accessed/used/deleted via the IMAP interface.

This seems like a SQL quoting issue, which may indicate some potential SQL
injectionattack vectors being available.
======================================================================

----------------------------------------------------------------------
paul - 02-May-08 16:06
----------------------------------------------------------------------
I just tested this against 2.2.10:

> nc imap.nfg.nl imap
* OK dbmail imap (protocol version 4r1) server 2.2.10 ready to run
x login testuser1 test
x OK LOGIN completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed
x create ta'Pal
x OK CREATE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
* LIST (\hasnochildren) "/" "ta'Pal"
x OK LIST completed
x delete ta'Pal
x OK DELETE completed
x list "" *
* LIST (\hasnochildren) "/" "INBOX"
* LIST (\hasnochildren) "/" "Sent"
* LIST (\hasnochildren) "/" "Trash"
x OK LIST completed

I don't see the problem, or at least, I'm unable to reproduce this. Could
be a client issue.

----------------------------------------------------------------------
paul - 12-May-08 17:11
----------------------------------------------------------------------
I'm closing this report due to lack of feedback.

----------------------------------------------------------------------
gordan - 13-May-08 23:47
----------------------------------------------------------------------
In Thunderbird, create a folder called Mail. Inside that, create a folder
called "Foo Bar". Inside that, create a folder called "Foos' A&B".

This will produce a whole bunch of errors and after that the server will
keep saying "specified mailbox does not exist". Doing the same thing with
Courier IMAP as the back end works fine, so the problem appears to be
DBMail specific. Deleting the folder also fails. Checking the
dbmail_mailboxes table, the directory is there, but seems to be called
"Mail/Foo Bar/Foos' A&-B" (note the - after ampersand).

----------------------------------------------------------------------
paul - 14-May-08 10:18
----------------------------------------------------------------------
Ok, I reproduced it now.

Issue History
Date Modified Username Field Change
======================================================================
02-May-08 11:46 gordan New Issue
02-May-08 16:06 paul Note Added: 0002541
12-May-08 17:11 paul Note Added: 0002549
12-May-08 17:11 paul Status new => closed
12-May-08 17:11 paul Resolution open => unable to
reproduce
13-May-08 23:47 gordan Status closed => feedback
13-May-08 23:47 gordan Resolution unable to reproduce =>
reopened
13-May-08 23:47 gordan Note Added: 0002551
14-May-08 10:18 paul Note Added: 0002552
14-May-08 10:18 paul Status feedback => confirmed
======================================================================

_______________________________________________
Dbmail-dev mailing list
Dbmail-dev[at]dbmail.org
http://twister.fastxs.net/mailman/listinfo/dbmail-dev

DBMail dev RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact lists@gossamer-threads.com
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.