{"id":"CVE-2005-0373","details":"Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.","modified":"2026-04-10T03:36:54.236708Z","published":"2004-10-07T04:00:00Z","references":[{"type":"ADVISORY","url":"http://www.gentoo.org/security/en/glsa/glsa-200410-05.xml"},{"type":"ADVISORY","url":"http://www.linuxcompatible.org/print42495.html"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDKSA-2005:054"},{"type":"ADVISORY","url":"http://www.monkey.org/openbsd/archive/ports/0407/msg00265.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/11347"},{"type":"ADVISORY","url":"https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/plugins/digestmd5.c.diff?r1=1.170&r2=1.171"},{"type":"ADVISORY","url":"https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/plugins/digestmd5.c?rev=1.171&content-type=text/x-cvsweb-markup"},{"type":"FIX","url":"http://www.gentoo.org/security/en/glsa/glsa-200410-05.xml"},{"type":"FIX","url":"http://www.linuxcompatible.org/print42495.html"},{"type":"FIX","url":"http://www.monkey.org/openbsd/archive/ports/0407/msg00265.html"},{"type":"FIX","url":"http://www.securityfocus.com/bid/11347"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/17642"}],"schema_version":"1.7.5"}