CVE-2002-2043

NONE EPSS 67.0%
Published Dec 31, 200223y ago · Modified Jun 16, 20262w ago
Find Similar
Published Dec 31, 2002 23y ago
Last Modified Jun 16, 2026 2w ago

Description

SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.

Threat Intelligence

EPSS Exploit Probability
67.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 2

VendorProductVersionRange
cyrussasl1.5.24any
cyrussasl1.5.27any

References 3

Remediation