CVE-2006-1721
CVE-2006-1721
digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of service (segmentation fault) via malformed inputs in DIGEST-MD5 negotiation.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://patches.sgi.com/support/free/security/advisories/20070901-01-P.aschttp://asg.web.cmu.edu/archive/message.php?mailbox=archive.cyrus-sasl&msg=7775http://labs.musecurity.com/advisories/MU-200604-01.txthttp://lists.apple.com/archives/security-announce/2006/Sep/msg00002.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-April/044992.htmlhttp://secunia.com/advisories/19618http://secunia.com/advisories/19753http://secunia.com/advisories/19809http://secunia.com/advisories/19825http://secunia.com/advisories/19964http://secunia.com/advisories/20014http://secunia.com/advisories/22187