Computer Security
[EN] securityvulns.ru no-pyccku


Zarafa DoS
Published:05.05.2014
Source:
SecurityVulns ID:13743
Type:remote
Threat Level:
5/10
Description:Few DoS conditions.
Affected:ZARAFA : zarafa 7.1
CVE:CVE-2014-0079 (The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 7.1.8, 6.20.0, and earlier, when using certain build conditions, allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the password.")
 CVE-2014-0037 (The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username.")
Original documentdocumentMANDRIVA, [ MDVSA-2014:044 ] zarafa (05.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod