CVE-2005-0373

Name of the Vulnerable Software and Affected Versions Cyrus-SASL versions prior to 2.1.18-r1

Description The issue is related to a buffer overflow in the DIGEST-MD5 SASL plugin, which can be exploited by remote attackers to execute arbitrary code. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of this issue can be done remotely.

Recommendations For versions prior to 2.1.18-r1, update to version 2.1.18-r1 or later to resolve the issue. As a temporary workaround, consider disabling the DIGEST-MD5 SASL plugin until a patch is available. Restrict access to the vulnerable plugin to minimize the risk of exploitation.