Postfix on Mac OS X 10.3.x through 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:14:18
Updated: 2022-10-03T16:14:18
Reserved: 2022-10-03T00:00:00
Link: CVE-2004-0925
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-01-27T05:00:00.000
Modified: 2008-09-10T19:28:16.257
Link: CVE-2004-0925
JSON object: View
Redhat Information
No data.
CWE