2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.073 Low
EPSS
Percentile
94.0%
digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer
(SASL) library 2.1.18, and possibly other versions before 2.1.21, allows
remote unauthenticated attackers to cause a denial of service (segmentation
fault) via malformed inputs in DIGEST-MD5 negotiation.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | cyrus-sasl2 | <Â 2.1.19.dfsg1-0.1ubuntu2 | UNKNOWN |
ubuntu | 6.10 | noarch | cyrus-sasl2 | <Â 2.1.19.dfsg1-0.1ubuntu2 | UNKNOWN |
ubuntu | 7.04 | noarch | cyrus-sasl2 | <Â 2.1.19.dfsg1-0.1ubuntu2 | UNKNOWN |