Vulnerability in Apple Mac_os_x
CVE-2005-0373
Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.
EPSS: 0.039 (89.0th percentile) — read the EPSS interpretation.
Affected products
- Apple Mac_os_x — versions 10.0, 10.0.1, 10.0.2
- Apple Mac_os_x_server — versions 10.0, 10.1, 10.1.1
- Conectiva Linux — versions 9.0, 10.0
- Cyrus Sasl — versions 1.5.24, 1.5.27, 1.5.28
- Openpkg — versions 2.1, 2.2
- Redhat Fedora_core — versions core_1.0
- Suse Suse_cvsup — versions 16.1h_36.i586
- Suse Suse_linux — versions 1.0, 8.0, 8.1
- N/a — versions n/a
References
- cve@mitre.org (vendor-advisory, Patch, x_refsource_SUSE, Vendor Advisory)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (Vendor Advisory, mailing-list, x_refsource_MLIST, Patch)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_GENTOO, Vendor Advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)