CVE-2008-2380
EPSS 0.60%courier-authlib - sql injection
發布日:2008/12/22修改日:2026/4/28
描述
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
受影響套件(3)
- Debian/courier-authlibfrom 0, < 0.61.0-1+lenny1
- Debian/courier-authlibfrom 0, < 0.58-4+etch2
- Debian/courier-authlibfrom 0, < 0.61.0-1+lenny1