CVE-2009-0582
CVE-2009-0582 concerns Evolution Data Server’s Evolution/evolution-data-server NTLM authentication. The ntlm_challenge function in Camel’s NTLM SASL implementation does not validate that the length field in an NTLM type 2 challenge is consistent with the packet data, allowing a remote server to c...