CVE-2005-3532
Gravedad CVSS v2.0:
ALTA
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
11/12/2005
Última modificación:
03/04/2025
Descripción
*** Pendiente de traducción *** authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled.
Impacto
Puntuación base 2.0
7.50
Gravedad 2.0
ALTA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.37.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.46:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.47:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.48.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.49.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.50.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:double_precision_incorporated:courier_mail_server:0.52.1:*:*:*:*:*:*:* |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=211920
- http://secunia.com/advisories/17919
- http://secunia.com/advisories/17999
- http://www.debian.org/security/2005/dsa-917
- http://www.securityfocus.com/bid/15771/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23532
- https://usn.ubuntu.com/226-1/
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=211920
- http://secunia.com/advisories/17919
- http://secunia.com/advisories/17999
- http://www.debian.org/security/2005/dsa-917
- http://www.securityfocus.com/bid/15771/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23532
- https://usn.ubuntu.com/226-1/