CVE-2014-0037

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
zarafazarafa
5.00
zarafazarafa
5.01
zarafazarafa
5.02
zarafazarafa
5.10
zarafazarafa
5.11
zarafazarafa
5.20
zarafazarafa
5.22
zarafazarafa
6.00
zarafazarafa
6.01
zarafazarafa
6.02
zarafazarafa
6.03
zarafazarafa
6.10
zarafazarafa
6.11
zarafazarafa
6.20
zarafazarafa
6.20.2
zarafazarafa
6.20.3
zarafazarafa
6.20.5
zarafazarafa
6.20.6
zarafazarafa
6.20.7
zarafazarafa
6.20.10
zarafazarafa
6.20.11
zarafazarafa
6.20.12
zarafazarafa
6.30.0
zarafazarafa
6.30.3
zarafazarafa
6.30.4
zarafazarafa
6.30.5
zarafazarafa
6.30.6
zarafazarafa
6.30.7
zarafazarafa
6.30.8
zarafazarafa
6.30.9
zarafazarafa
6.30.10
zarafazarafa
6.30.11
zarafazarafa
6.30.13
zarafazarafa
6.30.16
zarafazarafa
6.30.17
zarafazarafa
6.40.0
zarafazarafa
6.40.2
zarafazarafa
6.40.3
zarafazarafa
6.40.4
zarafazarafa
6.40.5
zarafazarafa
6.40.6
zarafazarafa
6.40.7
zarafazarafa
6.40.8
zarafazarafa
6.40.9
zarafazarafa
6.40.10
zarafazarafa
6.40.11
zarafazarafa
6.40.12
zarafazarafa
6.40.13
zarafazarafa
6.40.14
zarafazarafa
6.40.15
zarafazarafa
6.40.16
zarafazarafa
6.40.17
zarafazarafa
7.0
zarafazarafa
7.0.1
zarafazarafa
7.0.2
zarafazarafa
7.0.3
zarafazarafa
7.0.4
zarafazarafa
7.0.5
zarafazarafa
7.0.6
zarafazarafa
7.0.7
zarafazarafa
7.0.8
zarafazarafa
7.0.9
zarafazarafa
7.0.10
zarafazarafa
7.0.11
zarafazarafa
7.0.12
zarafazarafa
7.0.13
zarafazarafa
7.1.0
zarafazarafa
7.1.1
zarafazarafa
7.1.2
zarafazarafa
7.1.3
zarafazarafa
7.1.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.mandriva.com/security/advisories?name=MDVSA-2014:044
http://www.openwall.com/lists/oss-security/2014/01/31/14
https://bugzilla.redhat.com/show_bug.cgi?id=1056767
https://bugzilla.redhat.com/show_bug.cgi?id=1059903
http://www.mandriva.com/security/advisories?name=MDVSA-2014:044
http://www.openwall.com/lists/oss-security/2014/01/31/14
https://bugzilla.redhat.com/show_bug.cgi?id=1056767
https://bugzilla.redhat.com/show_bug.cgi?id=1059903