Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Debian Local Security Checks --> Category: infos

[DSA1042] DSA-1042-1 cyrus-sasl2 Vulnerability Scan

Vulnerability Scan Summary
DSA-1042-1 cyrus-sasl2

Detailed Explanation for this Vulnerability Test

The Mu Security research team discovered a denial of service condition
in the Simple Authentication and Security Layer authentication library
(SASL) during DIGEST-MD5 negotiation. This potentially affects
multiple products that use SASL DIGEST-MD5 authentication including
OpenLDAP, Sendmail, Postfix, etc.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
version 2.1.19-1.5sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 2.1.19.dfsg1-0.2.
We recommend that you upgrade your cyrus-sasl2 packages.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.