Zurück zur CVE-Übersicht
CVE-2002-2043
HIGH(7.5)AV:N/AC:L/Au:N/C:P/I:P/A:P
Risk Signal Score19/100 — NIEDRIG
- CVSS 7.5 — Hoch
EPSS-Score
1%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
7.5
Technische Schwere
Beschreibung
SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.
Referenzen
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0020.html
- http://www.iss.net/security_center/static/8748.php
- http://www.securityfocus.com/bid/4409
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0020.html
- http://www.iss.net/security_center/static/8748.php
- http://www.securityfocus.com/bid/4409