Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-2043
CVE-2002-2043
Description
SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.
Affected products
3- Range: =1.5.24, =1.5.27
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.