Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-0688

Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via strings that are used as input to the sasl_encode64 function in lib/saslutil.c.

  • Published: May 15, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-0688
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
carnegie_mellon_university / cyrus-sasl 2.1.21 2.1.21.x
carnegie_mellon_university / cyrus-sasl 2.1.3 2.1.3.x
carnegie_mellon_university / cyrus-sasl 1.5.23 1.5.23.x
carnegie_mellon_university / cyrus-sasl 1.5.5 1.5.5.x
carnegie_mellon_university / cyrus-sasl 1.5.0 1.5.0.x
carnegie_mellon_university / cyrus-sasl 2.0.3 2.0.3.x
carnegie_mellon_university / cyrus-sasl 2.1.17 2.1.17.x
carnegie_mellon_university / cyrus-sasl 2.1.19 2.1.19.x
carnegie_mellon_university / cyrus-sasl 1.5.10 1.5.10.x
carnegie_mellon_university / cyrus-sasl 2.1.2 2.1.2.x
carnegie_mellon_university / cyrus-sasl 1.5.24 1.5.24.x
carnegie_mellon_university / cyrus-sasl 2.1.8 2.1.8.x
carnegie_mellon_university / cyrus-sasl 2.1.6 2.1.6.x
carnegie_mellon_university / cyrus-sasl 1.5.15 1.5.15.x
carnegie_mellon_university / cyrus-sasl 2.0.1 2.0.1.x
carnegie_mellon_university / cyrus-sasl 2.1.14 2.1.14.x
carnegie_mellon_university / cyrus-sasl 1.5.3 1.5.3.x
carnegie_mellon_university / cyrus-sasl 2.0.0 2.0.0.x
carnegie_mellon_university / cyrus-sasl 2.1.20 2.1.20.x
carnegie_mellon_university / cyrus-sasl - 2.1.22.x
carnegie_mellon_university / cyrus-sasl 1.5.27 1.5.27.x
carnegie_mellon_university / cyrus-sasl 2.1.16 2.1.16.x
carnegie_mellon_university / cyrus-sasl 2.1.5 2.1.5.x
carnegie_mellon_university / cyrus-sasl 2.0.4 2.0.4.x
carnegie_mellon_university / cyrus-sasl 1.5.21 1.5.21.x
carnegie_mellon_university / cyrus-sasl 2.1.10 2.1.10.x
carnegie_mellon_university / cyrus-sasl 1.5.26 1.5.26.x
carnegie_mellon_university / cyrus-sasl 2.1.0 2.1.0.x
carnegie_mellon_university / cyrus-sasl 1.5.20 1.5.20.x
carnegie_mellon_university / cyrus-sasl 2.1.13 2.1.13.x
carnegie_mellon_university / cyrus-sasl 2.0.2 2.0.2.x
carnegie_mellon_university / cyrus-sasl 1.5.2 1.5.2.x
carnegie_mellon_university / cyrus-sasl 2.1.11 2.1.11.x
carnegie_mellon_university / cyrus-sasl 2.1.15 2.1.15.x
carnegie_mellon_university / cyrus-sasl 2.1.9 2.1.9.x
carnegie_mellon_university / cyrus-sasl 2.1.1 2.1.1.x
carnegie_mellon_university / cyrus-sasl 1.5.28 1.5.28.x
carnegie_mellon_university / cyrus-sasl 1.5.13 1.5.13.x
carnegie_mellon_university / cyrus-sasl 1.5.22 1.5.22.x
carnegie_mellon_university / cyrus-sasl 1.5.16 1.5.16.x
carnegie_mellon_university / cyrus-sasl 2.1.12 2.1.12.x
carnegie_mellon_university / cyrus-sasl 1.4.1 1.4.1.x
carnegie_mellon_university / cyrus-sasl 2.1.7 2.1.7.x
carnegie_mellon_university / cyrus-sasl 2.0.5 2.0.5.x
carnegie_mellon_university / cyrus-sasl 1.5.11 1.5.11.x
carnegie_mellon_university / cyrus-sasl 2.1.18 2.1.18.x