CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zarafa: Security Vulnerabilities

CVE-2014-0037

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

CVSS Score

5.0

EPSS Score

0.007

Published

2014-04-28

CVE-2014-0079

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 7.1.8, 6.20.0, and earlier, when using certain build conditions, allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the password."

CVSS Score

5.0

EPSS Score

0.005

Published

2014-04-28

Page 2

Vulnerabilities

Vulnerable Software

Zarafa: Security Vulnerabilities

Products

Pricing

Contact Us