CVE-2004-0884

2005-01-2705:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0884

libsasl

libsasl2

cyrus-sasl

sasl_path

environment variable

arbitrary code

nvd

6.8 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0005 Low

EPSS

Percentile

15.0%

JSON

The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASL_PATH to point to malicious programs.

CPENameOperatorVersion
cyrus:saslcyrus sasleq2.1.16
cyrus:saslcyrus sasleq2.1.13
conectiva:linuxconectiva linuxeq9.0
cyrus:saslcyrus sasleq2.1.18_r1
cyrus:saslcyrus sasleq2.1.11
cyrus:saslcyrus sasleq1.5.24
cyrus:saslcyrus sasleq1.5.27
cyrus:saslcyrus sasleq2.1.14
cyrus:saslcyrus sasleq1.5.28
cyrus:saslcyrus sasleq2.1.18

CPE	Name	Operator	Version
cyrus:sasl	cyrus sasl	eq	2.1.16
cyrus:sasl	cyrus sasl	eq	2.1.13
conectiva:linux	conectiva linux	eq	9.0
cyrus:sasl	cyrus sasl	eq	2.1.18_r1
cyrus:sasl	cyrus sasl	eq	2.1.11
cyrus:sasl	cyrus sasl	eq	1.5.24
cyrus:sasl	cyrus sasl	eq	1.5.27
cyrus:sasl	cyrus sasl	eq	2.1.14
cyrus:sasl	cyrus sasl	eq	1.5.28
cyrus:sasl	cyrus sasl	eq	2.1.18