Vulnerability Description
class.xmail.php in PhpXmail 0.7 through 1.1 does not properly handle large passwords, which prevents an error message from being returned and allows remote attackers to bypass authentication and gain unauthorized access.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Phpxmail | Phpxmail | 0.7 |
References
- http://marc.info/?l=bugtraq&m=112067694016410&w=2
- http://secunia.com/advisories/15951Vendor Advisory
- http://marc.info/?l=bugtraq&m=112067694016410&w=2
- http://secunia.com/advisories/15951Vendor Advisory
FAQ
What is CVE-2005-2183?
CVE-2005-2183 is a vulnerability with a CVSS score of 7.5 (HIGH). class.xmail.php in PhpXmail 0.7 through 1.1 does not properly handle large passwords, which prevents an error message from being returned and allows remote attackers to bypass authentication and gain ...
How severe is CVE-2005-2183?
CVE-2005-2183 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2183?
Check the references section above for vendor advisories and patch information. Affected products include: Phpxmail Phpxmail.