CVE-2003-0040

🗓️ 01 Sep 2004 04:00:00Reported by mitreType

SQL injection in PostgreSQL auth module for courier 0.40, allows remote attackers to execute SQL code via user name

Reporter	Title	Published	Views	Family All 10
Tenable Nessus	Debian DSA-247-1 : courier-ssl - missing input sanitizing	29 Sep 200400:00	–	nessus
Cvelist	CVE-2003-0040	1 Sep 200404:00	–	cvelist
NVD	CVE-2003-0040	19 Feb 200305:00	–	nvd
Debian	[SECURITY] [DSA 247-1] New courier packages fix SQL injection	30 Jan 200314:46	–	debian
Debian	[SECURITY] [DSA 247-1] New courier packages fix SQL injection	30 Jan 200314:46	–	debian
OpenVAS	Debian Security Advisory DSA 247-1 (courier)	17 Jan 200800:00	–	openvas
OpenVAS	Debian Security Advisory DSA 247-1 (courier)	17 Jan 200800:00	–	openvas
CVE	CAN-2003-0040	6 Aug 202410:42	–	cve
Debian CVE	CVE-2003-0040	1 Sep 200404:00	–	debiancve
OSV	courier-ssl - missing input sanitizing	30 Jan 200300:00	–	osv

Nvd

Node

double_precision_incorporated courier_mtaMatch0.37.3

inter7 courier-imapMatch1.6

Source	Link
debian	www.debian.org/security/2003/dsa-247
securityfocus	www.securityfocus.com/bid/6738
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/11213

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Sep 2004 04:00Current

7.8High risk

Vulners AI Score7.8

CVSS27.5

EPSS0.00487