CVE-2002-2043
NONE EPSS 67.0%
Published Dec 31, 200223y ago · Modified Jun 16, 20262w ago
Published Dec 31, 2002 23y ago
Last Modified Jun 16, 2026 2w ago
Description
SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.
Threat Intelligence
EPSS Exploit Probability
67.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 2
References 3
- archives.neohapsis.com http://archives.neohapsis.com/archives/bugtraq/2002-04/0020.html
- iss.net http://www.iss.net/security_center/static/8748.php
- securityfocus.com http://www.securityfocus.com/bid/4409
Remediation
- archives.neohapsis.com http://archives.neohapsis.com/archives/bugtraq/2002-04/0020.html
- iss.net http://www.iss.net/security_center/static/8748.php
- securityfocus.com http://www.securityfocus.com/bid/4409