|
|
CVE Reference: CVE-2005-0022 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-0022 |
|
|
Description: Buffer overflow in the spa_base64_to_bits function in Exim before 4.43, as originally obtained from Samba code, and as called by the auth_spa_client function, may allow attackers to execute arbitrary code during SPA authentication. |
|
|
CVE Status: Candidate |
|
|
References: REDHAT http://www.redhat.com/support/errata/RHSA-2005-025.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11293 MLIST http://www.exim.org/mail-archives/exim-users/Week-of-Mon-20050103/msg00028.html IDEFENSE http://www.idefense.com/application/poi/display?id=178&type=vulnerabilities GENTOO http://security.gentoo.org/glsa/glsa-200501-23.xml CONFIRM http://ftp6.us.freebsd.org/pub/mail/exim/ChangeLogs/ChangeLog-4.44 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110824870908614&w=2 BID 12188 |
|
| Return to the previous page. |
