Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-1721HistoryApr 11, 2006 - 11:02 p.m.
CVE-2006-1721
2006-04-1123:02:00
Debian Security Bug Tracker
security-tracker.debian.org
11
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.073 Low
EPSS
Percentile
94.0%
digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of service (segmentation fault) via malformed inputs in DIGEST-MD5 negotiation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cyrus-sasl2 | < 2.1.19.dfsg1-0.2 | cyrus-sasl2_2.1.19.dfsg1-0.2_all.deb |
| Debian | 11 | all | cyrus-sasl2 | < 2.1.19.dfsg1-0.2 | cyrus-sasl2_2.1.19.dfsg1-0.2_all.deb |
| Debian | 10 | all | cyrus-sasl2 | < 2.1.19.dfsg1-0.2 | cyrus-sasl2_2.1.19.dfsg1-0.2_all.deb |
| Debian | 999 | all | cyrus-sasl2 | < 2.1.19.dfsg1-0.2 | cyrus-sasl2_2.1.19.dfsg1-0.2_all.deb |
| Debian | 13 | all | cyrus-sasl2 | < 2.1.19.dfsg1-0.2 | cyrus-sasl2_2.1.19.dfsg1-0.2_all.deb |
Related
nessus
nessus
RHEL 3 : cyrus-sasl (RHSA-2007:0878)
2007-09-05 00:00:00
Scientific Linux Security Update : cyrus-sasl on SL4.x, SL3.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 4 : cyrus-sasl (ELSA-2007-0795)
2013-07-12 00:00:00
openvas
openvas
FreeBSD Ports: cyrus-sasl
2008-09-04 00:00:00
Debian Security Advisory DSA 1042-1 (cyrus-sasl2)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200604-09 (cyrus-sasl)
2008-09-24 00:00:00
redhat
redhat
(RHSA-2007:0795) Moderate: cyrus-sasl security and bug fix update
2007-09-04 00:00:00
(RHSA-2007:0878) Moderate: cyrus-sasl security update
2007-09-04 00:00:00
gentoo
gentoo
Cyrus-SASL: DIGEST-MD5 Pre-Authentication Denial of service
2006-04-21 00:00:00
oraclelinux
oraclelinux
Moderate: cyrus-sasl security update
2007-09-04 00:00:00
Moderate: cyrus-sasl security and bug fix update
2007-09-04 00:00:00
debian
debian
[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service
2006-04-25 17:35:50
[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service
2006-04-25 17:35:50
centos
centos
cyrus security update
2007-09-04 21:52:33
cyrus security update
2007-09-04 21:31:32
freebsd
freebsd
cyrus-sasl -- DIGEST-MD5 Pre-Authentication Denial of Service
2006-04-11 00:00:00
ubuntu
ubuntu
cyrus-sasl2 vulnerability
2006-04-24 00:00:00
cve
cve
CVE-2006-1721
2006-04-11 23:02:00
ubuntucve
ubuntucve
CVE-2006-1721
2006-04-11 00:00:00
prion
prion
Design/Logic Flaw
2006-04-11 23:02:00
suse
suse
remote denial of service in cyrus-sasl-digestmd5
2006-05-05 14:16:08
securityvulns
securityvulns
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.073 Low
EPSS
Percentile
94.0%
Related for DEBIANCVE:CVE-2006-1721