SQL injection vulnerability in the Courier Authentication Library (aka courier-authlib) prior to 0.60.6 on SUSE openSUSE 10.3 and 11.0, and other platforms, when MySQL and a non-Latin character set are used, allows remote malicious users to execute arbitrary SQL commands via the username and unspecified other vectors.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
courier-mta courtier-authlib 0.52 |
||
courier-mta courtier-authlib 0.53 |
||
courier-mta courtier-authlib 0.54 |
||
courier-mta courtier-authlib 0.55 |
||
courier-mta courtier-authlib 0.56 |
||
courier-mta courtier-authlib 0.57 |
||
courier-mta courtier-authlib 0.58 |
||
courier-mta courtier-authlib 0.59 |
||
courier-mta courtier-authlib 0.59.1 |
||
courier-mta courtier-authlib 0.59.2 |
||
courier-mta courtier-authlib 0.59.3 |
||
courier-mta courtier-authlib 0.60 |
||
courier-mta courtier-authlib 0.60.1 |
||
courier-mta courtier-authlib 0.60.2 |
||
courier-mta courtier-authlib 0.60.3 |
||
courier-mta courtier-authlib 0.60.4 |
||
courier-mta courtier-authlib 0.60.5 |
Vulmon