CVE-2005-0198

A logic error in the CRAM-MD5 code for the University of Washington IMAP (UW-IMAP) server, when Challenge-Response Authentication Mechanism with MD5 (CRAM-MD5) is enabled, does not properly enforce all the required conditions for successful authentication, which allows remote attackers to authenticate as arbitrary users.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:university_of_washington:uw-imap:*:*:*:*:*:*:*:*

Information

Published : 2005-05-01 21:00

Updated : 2017-10-10 18:29


NVD link : CVE-2005-0198

Mitre link : CVE-2005-0198


JSON object : View

Advertisement

dedicated server usa

Products Affected

university_of_washington

  • uw-imap