HomeCarnegie Mellon UniversityCVE-2009-0688

CVE-2009-0688

UNKNOWN
7.5CVSS
Published: 2009-05-15
Updated: 2025-04-09
AI Analysis

Description

Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via strings that are used as input to the sasl_encode64 function in lib/saslutil.c.

CVSS Metrics

Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector
network
Access Cmplx
low
Auth
none
Confidentiality
partial
Integrity
partial
Availability
partial
Weaknesses
CWE-119

Metadata

Primary Vendor
CARNEGIE_MELLON_UNIVERSITY
Published
5/15/2009
Last Modified
4/9/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

carnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-saslcarnegie_mellon_university : cyrus-sasl

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2009-0688 | UNKNOWN Severity | CVEDatabase.com | CVEDatabase.com