Charybdis Project - Charybdis CVE

Filtered by vendor Charybdis Project Subscriptions

Filtered by product Charybdis Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2016-7143	2 Charybdis Project, Debian	2 Charybdis, Debian Linux	2016-11-28	N/A
The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

Page 1 of 1.