CVE-2005-3532

Опубликовано: 11 дек. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.37.3:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.46:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.47:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48.1:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48.2:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.49.0:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.50.0:*:*:*:*:*:*:*

cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.52.1:*:*:*:*:*:*:*

EPSS

Процентиль: 75%

0.00902

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-3532

ubuntu

почти 20 лет назад

CVE-2005-3532

debian

почти 20 лет назад

authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through ...

GHSA-cr48-c784-cmxh

github

больше 3 лет назад

EPSS

Процентиль: 75%

0.00902

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other