CVE-2005-2183

class.xmail.php in PhpXmail 0.7 through 1.1 does not properly handle large passwords, which prevents an error message from being returned and allows remote attackers to bypass authentication and gain unauthorized access.

Published: Jul 11, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2183
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
phpxmail / phpxmail	1.1	1.1.x
phpxmail / phpxmail	0.7	0.7.x

http://marc.info/?l=bugtraq&m=112067694016410&w=2
http://secunia.com/advisories/15951

Vulnerability Database

290,206

CVE-2005-2183