oval:org.mitre.oval:def:23665

Definition Id: oval:org.mitre.oval:def:23665
 
Oval ID: oval:org.mitre.oval:def:23665
Title: ELSA-2011:0843: postfix security update (Moderate)
Description: The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service (heap memory corruption and daemon crash) or possibly execute arbitrary code via an invalid AUTH command with one method followed by an AUTH command with a different method.
Family: unix Class: patch
Reference(s): ELSA-2011:0843-01
CVE-2011-1720
Version: 6
Platform(s): Oracle Linux 6
Product(s): postfix
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16594
 
Oval ID: oval:org.mitre.oval:def:16594
Title: Oracle Linux 6.x
Description: The operating system installed on the system is Oracle Linux 6.x
Family: unix Class: inventory
Reference(s): cpe:/o:oracle:linux:6
Version: 5
Platform(s): Oracle Linux 6
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:23665