CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Dbmail: >> Dbmail >> 2.2.7 Security Vulnerabilities

CVE-2007-6714

DBMail before 2.2.9, when using authldap with an LDAP server that supports anonymous login such as Active Directory, allows remote attackers to bypass authentication via an empty password, which causes the LDAP bind to indicate success based on anonymous authentication.

CVSS Score

6.8

EPSS Score

0.014

Published

2008-04-17

Page 1

Vulnerabilities

Vulnerable Software

Dbmail: >> Dbmail >> 2.2.7 Security Vulnerabilities

Products

Pricing

Contact Us