User: Password:
Subscribe / Log in / New account

Cyrus-SASL: DIGEST-MD5 Pre-Authentication Denial of Service

Package(s):cyrus-sasl CVE #(s):CVE-2006-1721
Created:April 21, 2006 Updated:September 4, 2007
Description: Cyrus-SASL contains an unspecified vulnerability in the DIGEST-MD5 process that could lead to a Denial of Service. An attacker could possibly exploit this vulnerability by sending specially crafted data stream to the Cyrus-SASL server, resulting in a Denial of Service even if the attacker is not able to authenticate.
Red Hat RHSA-2007:0878-01 cyrus-sasl 2007-09-04
Red Hat RHSA-2007:0795-01 cyrus-sasl 2007-09-04
SuSE SUSE-SA:2006:025 cyrus-sasl-digestmd5 2006-05-05
Fedora FEDORA-2006-515 cyrus-sasl 2006-05-04
Debian DSA-1042-1 cyrus-sasl2 2006-04-25
Mandriva MDKSA-2006:073 cyrus-sasl 2006-04-24
Ubuntu USN-272-1 cyrus-sasl2 2006-04-24
Gentoo 200604-09 cyrus-sasl 2006-04-21

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds