Postfix on Mac OS X 10.3.x up to and including 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.3 |
||
apple mac os x 10.3.2 |
||
apple mac os x server 10.3.1 |
||
apple mac os x server 10.3.3 |
||
apple mac os x 10.3.3 |
||
apple mac os x 10.3.4 |
||
apple mac os x 10.3.5 |
||
apple mac os x server 10.3 |
||
apple mac os x server 10.3.5 |
||
apple mac os x 10.3.1 |
||
apple mac os x server 10.3.2 |
||
apple mac os x server 10.3.4 |