Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:4920
HistoryMar 17, 2009 - 12:00 a.m.

Evolution Data Server ntlm_challenge()内存内容泄露漏洞

2009-03-1700:00:00
Root
www.seebug.org
21

EPSS

0.003

Percentile

66.4%

JSON

BUGTRAQ ID: 34109
CVE(CAN) ID: CVE-2009-0582

Evolution Data Server为地址簿、日历事件等常见的桌面信息提供单一的服务器。

Evolution Data Server所捆绑的Camel库没有正确地处理NTLM SASL报文。在camel/camel-sasl-ntlm.c的ntlm_challenge()函数中,没有对从type 2拷贝到type 3报文(客户端对服务器挑战的响应)的域字符串长度验证从服务器所接收到的剩余数据:

127 ntlm_set_string (ret, NTLM_RESPONSE_DOMAIN_OFFSET,
128 token->data + NTLM_CHALLENGE_DOMAIN_OFFSET,
129 atoi (token->data + NTLM_CHALLENGE_DOMAIN_LEN_OFFSET));

服务器可以指定大于报文中实际发送数据的长度导致客户端泄密部分内存。

GNOME Evolution Data Server 2.24.5
厂商补丁:

GNOME

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

<a href=“http://www.gnome.org/” target=“_blank”>http://www.gnome.org/</a>

Related

openvas 34
ubuntucve 1
debiancve 1
nessus 21
cvelist 1
nvd 1
prion 1
cve 1
veracode 1
fedora 2
centos 3
redhat 3
debian 2
oraclelinux 2
securityvulns 2
osv 1
openvas
openvas
SLES11: Security update for Evolution
2009-10-11 00:00:00
SLES10: Security update for evolution-data-server
2009-10-13 00:00:00
SLES11: Security update for Evolution
2009-10-11 00:00:00
ubuntucve
ubuntucve
CVE-2009-0582
2009-03-14 00:00:00
debiancve
debiancve
CVE-2009-0582
2009-03-14 18:30:00
nessus
nessus
openSUSE Security Update : evolution-data-server (evolution-data-server-782)
2009-07-21 00:00:00
openSUSE Security Update : evolution (evolution-776)
2009-07-21 00:00:00
openSUSE 10 Security Update : evolution-data-server (evolution-data-server-6171)
2009-04-30 00:00:00
cvelist
cvelist
CVE-2009-0582
2009-03-14 18:00:00
nvd
nvd
CVE-2009-0582
2009-03-14 18:30:00
prion
prion
Authentication flaw
2009-03-14 18:30:00
cve
cve
CVE-2009-0582
2009-03-14 18:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:31:25
fedora
fedora
[SECURITY] Fedora 10 Update: evolution-data-server-2.24.5-4.fc10
2009-03-18 18:59:58
[SECURITY] Fedora 9 Update: evolution-data-server-2.22.3-3.fc9
2009-03-18 19:01:39
centos
centos
evolution security update
2009-03-17 09:02:02
evolution security update
2009-03-17 17:18:35
evolution28 security update
2009-03-17 17:19:33
redhat
redhat
(RHSA-2009:0358) Moderate: evolution security update
2009-03-16 00:00:00
(RHSA-2009:0355) Moderate: evolution and evolution-data-server security update
2009-03-16 00:00:00
(RHSA-2009:0354) Moderate: evolution-data-server security update
2009-03-16 00:00:00
debian
debian
[SECURITY] [DSA 1813-2] New evolution-data-server packages fix regression
2009-07-22 01:30:35
[SECURITY] [DSA 1813-1] New evolution-data-server packages fix several vulnerabilities
2009-06-08 07:54:10
oraclelinux
oraclelinux
evolution and evolution-data-server security update
2009-03-16 00:00:00
evolution-data-server security update
2009-03-16 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:078 ] evolution-data-server
2009-03-24 00:00:00
Evolution Data Server multiple security vulnerabilities
2009-03-24 00:00:00
osv
osv
evolution-data-server - several vulnerabilities
2009-06-08 00:00:00

EPSS

0.003

Percentile

66.4%

JSON
Related for SSV:4920
openvas34ubuntucve1debiancve1nessus21cvelist1nvd1prion1cve1veracode1fedora2centos3redhat3debian2oraclelinux2securityvulns2osv1