CVE-2009-0582
Description
The ntlm_challenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server (aka evolution-data-server) 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount of data in a challenge packet, which allows remote mail servers to read information from the process memory of a client, or cause a denial of service (client crash), via an NTLM authentication type 2 packet with a length value that exceeds the amount of packet data.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
3.477
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-1.12.3-10.el5_3.3.i386.rpm | Linux |
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-1.12.3-10.el5_3.3.x86_64.rpm | Linux |
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-devel-1.12.3-10.el5_3.3.i386.rpm | Linux |
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-devel-1.12.3-10.el5_3.3.x86_64.rpm | Linux |
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-doc-1.12.3-10.el5_3.3.i386.rpm | Linux |
| (RHSA-2009:0354) Moderate: evolution-data-server security update evolution-data-server-doc-1.12.3-10.el5_3.3.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234