Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0956 | 1 Carnegie Mellon University | 1 Cyrus-sasl | 2017-10-09 | 4.6 MEDIUM | N/A |
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. | |||||
CVE-2009-0688 | 1 Carnegie Mellon University | 1 Cyrus-sasl | 2017-09-28 | 7.5 HIGH | N/A |
Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via strings that are used as input to the sasl_encode64 function in lib/saslutil.c. |