FKIE_CVE-2014-0037
Vulnerability from fkie_nvd - Published: 2014-04-28 14:09 - Updated: 2025-04-12 10:46
Severity ?
Summary
The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.00:*:*:*:*:*:*:*",
"matchCriteriaId": "8DFE4F63-2078-480A-B72A-3DE33CDC344B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.01:*:*:*:*:*:*:*",
"matchCriteriaId": "8F94B071-7F2E-43FE-97CA-4D197C974113",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.02:*:*:*:*:*:*:*",
"matchCriteriaId": "49C995CA-336C-4A1C-823D-9EBA045AD1F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.10:*:*:*:*:*:*:*",
"matchCriteriaId": "58078592-63A0-4B33-9B0C-7746BC1447AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.11:*:*:*:*:*:*:*",
"matchCriteriaId": "E49A5667-0871-41DC-9EB6-FA023F0ED09B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.20:*:*:*:*:*:*:*",
"matchCriteriaId": "984D2E0A-5BA5-421B-84C3-679A78DB635F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:5.22:*:*:*:*:*:*:*",
"matchCriteriaId": "3250F9C2-3C5B-4E68-A16E-2708821C27D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.00:*:*:*:*:*:*:*",
"matchCriteriaId": "423607B2-4333-490F-9C85-FFB839B62FE3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.01:*:*:*:*:*:*:*",
"matchCriteriaId": "538BEF9A-0FDA-4C89-A4C6-09B3800A5D50",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.02:*:*:*:*:*:*:*",
"matchCriteriaId": "3B81A4C9-9722-4F6F-A622-C906EE6032E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.03:*:*:*:*:*:*:*",
"matchCriteriaId": "F6AF323B-28EF-4682-91E6-F63CBE31EBF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.10:*:*:*:*:*:*:*",
"matchCriteriaId": "D8E76A6A-ED91-453B-BE25-A05A9AEEB09D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.11:*:*:*:*:*:*:*",
"matchCriteriaId": "7BDBB142-6537-4E04-9217-6855CADB70C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20:*:*:*:*:*:*:*",
"matchCriteriaId": "F8CD1C27-CD1D-41A0-B769-3F5AE7CA6018",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1946E4AC-F8B1-41CD-8EB7-56D09CC05F89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E21659BE-482A-4728-BF16-30AA1B54B9A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.5:*:*:*:*:*:*:*",
"matchCriteriaId": "29CCF0DA-18CA-477F-B5C6-656A8741986C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.6:*:*:*:*:*:*:*",
"matchCriteriaId": "46D40D82-352E-4354-A258-2F67927BAF60",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.7:*:*:*:*:*:*:*",
"matchCriteriaId": "41EBF40F-1E96-4BFE-9E3A-F0363971F334",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.10:*:*:*:*:*:*:*",
"matchCriteriaId": "87625EE1-B44B-48E3-89F9-FDF73C6E7483",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.11:*:*:*:*:*:*:*",
"matchCriteriaId": "C745286A-7F09-4029-A853-29B5FE58ACA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.20.12:*:*:*:*:*:*:*",
"matchCriteriaId": "DF617825-5411-4261-945B-CC947DEBE2DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.0:*:*:*:*:*:*:*",
"matchCriteriaId": "312953B3-DC4A-4A9E-AB7A-D2617608957A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E3033976-BF73-477C-A3C2-DDB4A5A1F2D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.4:*:*:*:*:*:*:*",
"matchCriteriaId": "0A480601-5B1C-42B2-A1ED-1ECADF27AB97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.5:*:*:*:*:*:*:*",
"matchCriteriaId": "8E6DB903-BB04-492E-B490-5E714570900B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.6:*:*:*:*:*:*:*",
"matchCriteriaId": "F53C514B-DCDD-4D5F-8C74-CB368D9F0317",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.7:*:*:*:*:*:*:*",
"matchCriteriaId": "AB02B61E-F4EC-4825-B68C-5A516B34D39B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.8:*:*:*:*:*:*:*",
"matchCriteriaId": "712FC963-72A1-409D-8800-ABCC22734E21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.9:*:*:*:*:*:*:*",
"matchCriteriaId": "21CA51E9-8A33-4B14-85B5-9F0C1A65B831",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.10:*:*:*:*:*:*:*",
"matchCriteriaId": "4B57B6F9-C341-4B33-8C51-EDA4AC14FD8D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.11:*:*:*:*:*:*:*",
"matchCriteriaId": "759A500E-C890-4EE0-A186-EEDC58A16D65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.13:*:*:*:*:*:*:*",
"matchCriteriaId": "ABD43F29-3C58-408B-9F86-048828500E0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.16:*:*:*:*:*:*:*",
"matchCriteriaId": "06DD5900-F9D6-4476-A2BC-FDCC62F24C1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.30.17:*:*:*:*:*:*:*",
"matchCriteriaId": "A986129F-6D72-496B-A009-115BA5FCA81F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E7B86CC4-B0CC-4291-AF56-62895ABB4A25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3052CEFF-192A-4E2E-9B8A-6FCEA2E73592",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A2AD93EE-839C-4B6C-8854-EE1FCB43FC0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.4:*:*:*:*:*:*:*",
"matchCriteriaId": "0826830D-3093-49EE-BCD9-AAF44EEAFF91",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.5:*:*:*:*:*:*:*",
"matchCriteriaId": "D109C2D4-7209-44B6-BD9E-3E15FAAC747F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.6:*:*:*:*:*:*:*",
"matchCriteriaId": "00071755-708D-4C26-8C46-9BB411B08F81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.7:*:*:*:*:*:*:*",
"matchCriteriaId": "6A2C9AF9-57B4-4351-A099-DD65E4D21379",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.8:*:*:*:*:*:*:*",
"matchCriteriaId": "1B34CA27-75B8-4F9C-A3EB-FE5E731F3DF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.9:*:*:*:*:*:*:*",
"matchCriteriaId": "358B0695-E72F-4ACB-96E1-7DBAE7981C77",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.10:*:*:*:*:*:*:*",
"matchCriteriaId": "314222DE-45B0-400B-92DB-5F5FBB88E00F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.11:*:*:*:*:*:*:*",
"matchCriteriaId": "FB65E407-02A6-477A-A418-E1AB08A85307",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.12:*:*:*:*:*:*:*",
"matchCriteriaId": "7AD27350-E696-4785-BB7C-14C63B36AE07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.13:*:*:*:*:*:*:*",
"matchCriteriaId": "3A3CC85B-D470-4209-912A-CB1F3CE9A98E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.14:*:*:*:*:*:*:*",
"matchCriteriaId": "EE62658B-8535-4768-BD44-A5CF53456DFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.15:*:*:*:*:*:*:*",
"matchCriteriaId": "E9A53540-87EC-459C-AE1B-A892E818AE70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.16:*:*:*:*:*:*:*",
"matchCriteriaId": "55B3BF65-76D3-43C5-940A-E15FE1F37BD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:6.40.17:*:*:*:*:*:*:*",
"matchCriteriaId": "C4ED0A87-B35C-4A2E-966E-8AB0A1D6A0FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "ED156852-536D-4F1E-A0F6-AE56A3761B31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BB87FEAC-53F9-408A-ACC1-8E158C969D10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6B3295CA-1249-486D-B8B5-BA8D3E51208E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "20351915-0737-4116-A5FC-1A599CF4B58F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "ED8C5B3B-1A70-4C55-8883-C76B4E8B06E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "49114244-F5F6-4170-A774-C4464910C235",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "CA8AC6BF-966E-4E2C-816C-8E0408371FB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "83BBD25D-D9D3-4AEC-BCBD-AF71B1E83306",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "B8B82DCF-DBB2-4123-BC2C-CADA57D7BB5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "B9593342-5727-4321-A3D1-106B53807F22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "169C423D-EC0F-4515-9D9F-5C836D317818",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "5918BF47-F84B-44AA-AC6F-2B6ABBDAF559",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "F9F7FACD-C812-44E7-AD6E-BDE0D7935C90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "562E0822-7D69-4CA0-BF45-90431B902C19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "1CC4BF34-15BE-4ECE-B4F8-A0F89CEC134D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B616E103-E23C-472A-BF01-B135C7C9A91D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "FC44763E-0B6F-4F85-BFF4-443F8E8C1DB0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "31107633-C2C7-45C6-AD29-C201FB9C91CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:zarafa:zarafa:7.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "4E3B86A7-D99C-48D1-83A6-74C1B03C51A2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to \"a NULL pointer of the username.\""
},
{
"lang": "es",
"value": "La funci\u00f3n ValidateUserLogon en provider/libserver/ECSession.cpp en Zarafa 5.00 anterior a 7.1.8 beta2 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de vectores relacionados con \"un puntero nulo del nombre de usuario.\""
}
],
"id": "CVE-2014-0037",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-04-28T14:09:06.080",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"
},
{
"source": "secalert@redhat.com",
"url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:044"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2014/01/31/14"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1056767"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1059903"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…