RSS   Vulnerabilities for 'Charybdis'   RSS

2016-09-21
 
CVE-2016-7143

 

 
The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top