CVE-2011-3372

2011-12-24T19:55:00
ID CVE-2011-3372
Type cve
Reporter cve@mitre.org
Modified 2011-12-26T05:00:00

Description

imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before 2.4.12 allows remote attackers to bypass authentication by sending an AUTHINFO USER command without sending an additional AUTHINFO PASS command.