CVE-2008-2380

Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 22/12/2008 Updated: 08/08/2017

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 454

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

SQL injection vulnerability in authpgsqllib.c in Courier-Authlib prior to 0.62.0, when a non-Latin locale Postgres database is used, allows remote malicious users to execute arbitrary SQL commands via query parameters containing apostrophes.

Vulnerable Product	Search on Vulmon	Subscribe to Product
courier-mta courtier-authlib 0.60.5
courier-mta courtier-authlib 0.61.0
courier-mta courtier-authlib 0.60
courier-mta courtier-authlib 0.52
courier-mta courtier-authlib 0.58
courier-mta courtier-authlib 0.59.1
courier-mta courtier-authlib 0.60.1
courier-mta courtier-authlib 0.60.6
courier-mta courtier-authlib 0.56
courier-mta courtier-authlib 0.59.3
courier-mta courtier-authlib 0.53
courier-mta courtier-authlib 0.59.2
courier-mta courtier-authlib 0.57
courier-mta courtier-authlib 0.55
courier-mta courtier-authlib 0.60.4
courier-mta courtier-authlib 0.61.1
courier-mta courtier-authlib 0.59
courier-mta courtier-authlib 0.54
courier-mta courtier-authlib 0.60.2
courier-mta courtier-authlib 0.60.3

CWE-89 http://www.courier-mta.org/authlib/changelog.html http://www.securityfocus.com/bid/32926 http://secunia.com/advisories/33235 http://osvdb.org/50811 http://security.gentoo.org/glsa/glsa-200903-25.xml http://secunia.com/advisories/34234 https://exchange.xforce.ibmcloud.com/vulnerabilities/47494 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-2380

Vulnerability Summary

References

Vulmon Search

About

Products

Connect