Kopano Core 授权问题漏洞

Kopano Core is a MAPI-based server component from the Dutch company Kopano at the heart of the Kopano stack. An authorization issue vulnerability exists in Kopano Core v11.0.2.51 version ECKrbAuth.cpp, which stems from an issue contained in provider/libserver/ECKrbAuth.cpp, which can be used for...

PT-2022-17932 · Zarafa +3 · Zarafa Collaboration Platform +3

Name of the Vulnerable Software and Affected Versions: Kopano Core versions 11.0.2.51 and earlier Zarafa Collaboration Platform versions 6.30 through 6.30.8 Description: The issue allows attackers to authenticate even if the user account or password is expired. This is due to a problem in the...