Lucene search
K

4 matches found

OSV
OSV
added 2021/07/26 7:15 a.m.3 views

UBUNTU-CVE-2021-33900

While investigating DIRSTUDIO-1219 it was noticed that configured StartTLS encryption was not applied when any SASL authentication mechanism DIGEST-MD5, GSSAPI was used. While investigating DIRSTUDIO-1220 it was noticed that any configured SASL confidentiality layer was not applied. This issue...

7.5CVSS7.1AI score0.00793EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2013/03/08 10:0 p.m.25 views

CVE-2013-0249

Stack-based buffer overflow in the Curlsaslcreatedigestmd5message function in lib/curlsasl.c in curl and libcurl 7.26.0 through 7.28.1, when negotiating SASL DIGEST-MD5 authentication, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long string...

7.5CVSS8.6AI score0.22913EPSS
Exploits6
Check Point Advisories
Check Point Advisories
added 2013/02/27 12:0 a.m.8 views

cURL and libcurl MD5 Digest Buffer Overflow (CVE-2013-0249)

The vulnerability is due to an error in Curlsaslcreatedigestmd5message while negotiating SASL DIGEST-MD5 authentication. A remote attacker can exploit this vulnerability by enticing a user to connect to a malicious server. This can lead to code execution in the context of the affected application...

7.5CVSS6.8AI score0.22913EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2007/09/05 12:0 a.m.27 views

RHEL 3 : cyrus-sasl (RHSA-2007:0878)

Updated cyrus-sasl packages that correct a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple...

2.6CVSS7.8AI score0.0243EPSS
Exploits0References3
Rows per page
Query Builder