exploitDog

GHSA-jc36-qrwh-c5w2

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

Ссылки

EPSS

Процентиль: 72%

0.00734

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2014-0037

nvd

почти 12 лет назад

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

EPSS

Процентиль: 72%

0.00734

Низкий

CVE ID

Дефекты

CWE-20