CVE-2014-0037 - Vulnerability Details

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Zarafa	Zarafa

Configuration 1 [-]

OR	cpe:2.3:a:zarafa:zarafa:5.00:::::::*
	cpe:2.3:a:zarafa:zarafa:5.01:::::::*
	cpe:2.3:a:zarafa:zarafa:5.02:::::::*
	cpe:2.3:a:zarafa:zarafa:5.10:::::::*
	cpe:2.3:a:zarafa:zarafa:5.11:::::::*
	cpe:2.3:a:zarafa:zarafa:5.20:::::::*
	cpe:2.3:a:zarafa:zarafa:5.22:::::::*
	cpe:2.3:a:zarafa:zarafa:6.00:::::::*
	cpe:2.3:a:zarafa:zarafa:6.01:::::::*
	cpe:2.3:a:zarafa:zarafa:6.02:::::::*
	cpe:2.3:a:zarafa:zarafa:6.03:::::::*
	cpe:2.3:a:zarafa:zarafa:6.10:::::::*
	cpe:2.3:a:zarafa:zarafa:6.11:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.2:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.3:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.5:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.6:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.7:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.10:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.11:::::::*
	cpe:2.3:a:zarafa:zarafa:6.20.12:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.0:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.3:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.4:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.5:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.6:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.7:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.8:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.9:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.10:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.11:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.13:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.16:::::::*
	cpe:2.3:a:zarafa:zarafa:6.30.17:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.0:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.2:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.3:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.4:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.5:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.6:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.7:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.8:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.9:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.10:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.11:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.12:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.13:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.14:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.15:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.16:::::::*
	cpe:2.3:a:zarafa:zarafa:6.40.17:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.1:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.2:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.3:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.4:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.5:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.6:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.7:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.8:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.9:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.10:::::::*
	cpe:2.3:a:zarafa:zarafa:7.0.11:::::::*
cpe:2.3:a:zarafa:zarafa:7.0.12:::::::*
cpe:2.3:a:zarafa:zarafa:7.0.13:::::::*
cpe:2.3:a:zarafa:zarafa:7.1.0:::::::*
cpe:2.3:a:zarafa:zarafa:7.1.1:::::::*
cpe:2.3:a:zarafa:zarafa:7.1.2:::::::*
cpe:2.3:a:zarafa:zarafa:7.1.3:::::::*
cpe:2.3:a:zarafa:zarafa:7.1.4:::::::*

No data.

References

Link	Providers
http://www.mandriva.com/security/advisories?name=MDVSA-2014:044
http://www.openwall.com/lists/oss-security/2014/01/31/14
https://bugzilla.redhat.com/show_bug.cgi?id=1056767
https://bugzilla.redhat.com/show_bug.cgi?id=1059903

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-04-28T14:00:00

Updated: 2024-08-06T08:58:26.532Z

Reserved: 2013-12-03T00:00:00

Link: CVE-2014-0037

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-04-28T14:09:06.080

Modified: 2024-11-21T02:01:13.520

Link: CVE-2014-0037

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-02-13T00:00:00", "descriptions": [{"lang": "en", "value": "The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to \"a NULL pointer of the username.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-04-28T11:57:00", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"}, {"name": "[oss-security] 20140131 Security Flaw CVE-2014-0037", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"}, {"name": "MDVSA-2014:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T08:58:26.532Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"}, {"name": "[oss-security] 20140131 Security Flaw CVE-2014-0037", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"}, {"name": "MDVSA-2014:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2014-0037", "datePublished": "2014-04-28T14:00:00", "dateReserved": "2013-12-03T00:00:00", "dateUpdated": "2024-08-06T08:58:26.532Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:zarafa:zarafa:5.00:*:*:*:*:*:*:*", "matchCriteriaId": "8DFE4F63-2078-480A-B72A-3DE33CDC344B", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.01:*:*:*:*:*:*:*", "matchCriteriaId": "8F94B071-7F2E-43FE-97CA-4D197C974113", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.02:*:*:*:*:*:*:*", "matchCriteriaId": "49C995CA-336C-4A1C-823D-9EBA045AD1F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.10:*:*:*:*:*:*:*", "matchCriteriaId": "58078592-63A0-4B33-9B0C-7746BC1447AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.11:*:*:*:*:*:*:*", "matchCriteriaId": "E49A5667-0871-41DC-9EB6-FA023F0ED09B", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.20:*:*:*:*:*:*:*", "matchCriteriaId": "984D2E0A-5BA5-421B-84C3-679A78DB635F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:5.22:*:*:*:*:*:*:*", "matchCriteriaId": "3250F9C2-3C5B-4E68-A16E-2708821C27D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.00:*:*:*:*:*:*:*", "matchCriteriaId": "423607B2-4333-490F-9C85-FFB839B62FE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.01:*:*:*:*:*:*:*", "matchCriteriaId": "538BEF9A-0FDA-4C89-A4C6-09B3800A5D50", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.02:*:*:*:*:*:*:*", "matchCriteriaId": "3B81A4C9-9722-4F6F-A622-C906EE6032E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.03:*:*:*:*:*:*:*", "matchCriteriaId": "F6AF323B-28EF-4682-91E6-F63CBE31EBF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.10:*:*:*:*:*:*:*", "matchCriteriaId": "D8E76A6A-ED91-453B-BE25-A05A9AEEB09D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.11:*:*:*:*:*:*:*", "matchCriteriaId": "7BDBB142-6537-4E04-9217-6855CADB70C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20:*:*:*:*:*:*:*", "matchCriteriaId": "F8CD1C27-CD1D-41A0-B769-3F5AE7CA6018", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.2:*:*:*:*:*:*:*", "matchCriteriaId": "1946E4AC-F8B1-41CD-8EB7-56D09CC05F89", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.3:*:*:*:*:*:*:*", "matchCriteriaId": "E21659BE-482A-4728-BF16-30AA1B54B9A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.5:*:*:*:*:*:*:*", "matchCriteriaId": "29CCF0DA-18CA-477F-B5C6-656A8741986C", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.6:*:*:*:*:*:*:*", "matchCriteriaId": "46D40D82-352E-4354-A258-2F67927BAF60", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.7:*:*:*:*:*:*:*", "matchCriteriaId": "41EBF40F-1E96-4BFE-9E3A-F0363971F334", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.10:*:*:*:*:*:*:*", "matchCriteriaId": "87625EE1-B44B-48E3-89F9-FDF73C6E7483", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.11:*:*:*:*:*:*:*", "matchCriteriaId": "C745286A-7F09-4029-A853-29B5FE58ACA2", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.12:*:*:*:*:*:*:*", "matchCriteriaId": "DF617825-5411-4261-945B-CC947DEBE2DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.0:*:*:*:*:*:*:*", "matchCriteriaId": "312953B3-DC4A-4A9E-AB7A-D2617608957A", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.3:*:*:*:*:*:*:*", "matchCriteriaId": "E3033976-BF73-477C-A3C2-DDB4A5A1F2D7", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.4:*:*:*:*:*:*:*", "matchCriteriaId": "0A480601-5B1C-42B2-A1ED-1ECADF27AB97", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.5:*:*:*:*:*:*:*", "matchCriteriaId": "8E6DB903-BB04-492E-B490-5E714570900B", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.6:*:*:*:*:*:*:*", "matchCriteriaId": "F53C514B-DCDD-4D5F-8C74-CB368D9F0317", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.7:*:*:*:*:*:*:*", "matchCriteriaId": "AB02B61E-F4EC-4825-B68C-5A516B34D39B", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.8:*:*:*:*:*:*:*", "matchCriteriaId": "712FC963-72A1-409D-8800-ABCC22734E21", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.9:*:*:*:*:*:*:*", "matchCriteriaId": "21CA51E9-8A33-4B14-85B5-9F0C1A65B831", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.10:*:*:*:*:*:*:*", "matchCriteriaId": "4B57B6F9-C341-4B33-8C51-EDA4AC14FD8D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.11:*:*:*:*:*:*:*", "matchCriteriaId": "759A500E-C890-4EE0-A186-EEDC58A16D65", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.13:*:*:*:*:*:*:*", "matchCriteriaId": "ABD43F29-3C58-408B-9F86-048828500E0E", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.16:*:*:*:*:*:*:*", "matchCriteriaId": "06DD5900-F9D6-4476-A2BC-FDCC62F24C1E", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.17:*:*:*:*:*:*:*", "matchCriteriaId": "A986129F-6D72-496B-A009-115BA5FCA81F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.0:*:*:*:*:*:*:*", "matchCriteriaId": "E7B86CC4-B0CC-4291-AF56-62895ABB4A25", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.2:*:*:*:*:*:*:*", "matchCriteriaId": "3052CEFF-192A-4E2E-9B8A-6FCEA2E73592", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.3:*:*:*:*:*:*:*", "matchCriteriaId": "A2AD93EE-839C-4B6C-8854-EE1FCB43FC0C", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.4:*:*:*:*:*:*:*", "matchCriteriaId": "0826830D-3093-49EE-BCD9-AAF44EEAFF91", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.5:*:*:*:*:*:*:*", "matchCriteriaId": "D109C2D4-7209-44B6-BD9E-3E15FAAC747F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.6:*:*:*:*:*:*:*", "matchCriteriaId": "00071755-708D-4C26-8C46-9BB411B08F81", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.7:*:*:*:*:*:*:*", "matchCriteriaId": "6A2C9AF9-57B4-4351-A099-DD65E4D21379", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.8:*:*:*:*:*:*:*", "matchCriteriaId": "1B34CA27-75B8-4F9C-A3EB-FE5E731F3DF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.9:*:*:*:*:*:*:*", "matchCriteriaId": "358B0695-E72F-4ACB-96E1-7DBAE7981C77", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.10:*:*:*:*:*:*:*", "matchCriteriaId": "314222DE-45B0-400B-92DB-5F5FBB88E00F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.11:*:*:*:*:*:*:*", "matchCriteriaId": "FB65E407-02A6-477A-A418-E1AB08A85307", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.12:*:*:*:*:*:*:*", "matchCriteriaId": "7AD27350-E696-4785-BB7C-14C63B36AE07", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.13:*:*:*:*:*:*:*", "matchCriteriaId": "3A3CC85B-D470-4209-912A-CB1F3CE9A98E", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.14:*:*:*:*:*:*:*", "matchCriteriaId": "EE62658B-8535-4768-BD44-A5CF53456DFB", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.15:*:*:*:*:*:*:*", "matchCriteriaId": "E9A53540-87EC-459C-AE1B-A892E818AE70", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.16:*:*:*:*:*:*:*", "matchCriteriaId": "55B3BF65-76D3-43C5-940A-E15FE1F37BD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.17:*:*:*:*:*:*:*", "matchCriteriaId": "C4ED0A87-B35C-4A2E-966E-8AB0A1D6A0FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "ED156852-536D-4F1E-A0F6-AE56A3761B31", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "BB87FEAC-53F9-408A-ACC1-8E158C969D10", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "6B3295CA-1249-486D-B8B5-BA8D3E51208E", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "20351915-0737-4116-A5FC-1A599CF4B58F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "ED8C5B3B-1A70-4C55-8883-C76B4E8B06E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "49114244-F5F6-4170-A774-C4464910C235", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "CA8AC6BF-966E-4E2C-816C-8E0408371FB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "83BBD25D-D9D3-4AEC-BCBD-AF71B1E83306", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "B8B82DCF-DBB2-4123-BC2C-CADA57D7BB5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "B9593342-5727-4321-A3D1-106B53807F22", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "169C423D-EC0F-4515-9D9F-5C836D317818", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "5918BF47-F84B-44AA-AC6F-2B6ABBDAF559", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "F9F7FACD-C812-44E7-AD6E-BDE0D7935C90", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.13:*:*:*:*:*:*:*", "matchCriteriaId": "562E0822-7D69-4CA0-BF45-90431B902C19", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "1CC4BF34-15BE-4ECE-B4F8-A0F89CEC134D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "B616E103-E23C-472A-BF01-B135C7C9A91D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "FC44763E-0B6F-4F85-BFF4-443F8E8C1DB0", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "31107633-C2C7-45C6-AD29-C201FB9C91CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "4E3B86A7-D99C-48D1-83A6-74C1B03C51A2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to \"a NULL pointer of the username.\""}, {"lang": "es", "value": "La funci\u00f3n ValidateUserLogon en provider/libserver/ECSession.cpp en Zarafa 5.00 anterior a 7.1.8 beta2 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de vectores relacionados con \"un puntero nulo del nombre de usuario.\""}], "id": "CVE-2014-0037", "lastModified": "2024-11-21T02:01:13.520", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-04-28T14:09:06.080", "references": [{"source": "secalert@redhat.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object