Unrated severityNVD Advisory· Published Apr 28, 2014· Updated Jun 17, 2026
CVE-2014-0079
CVE-2014-0079
Description
The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 7.1.8, 6.20.0, and earlier, when using certain build conditions, allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the password."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16cpe:2.3:a:zarafa:zarafa:*:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:zarafa:zarafa:*:*:*:*:*:*:*:*range: <=6.20
- cpe:2.3:a:zarafa:zarafa:5.00:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.01:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.02:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.10:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.11:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.20:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:5.22:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.00:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.01:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.02:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.03:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.10:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:6.11:*:*:*:*:*:*:*
- cpe:2.3:a:zarafa:zarafa:7.1.8:*:*:*:*:*:*:*
- (no CPE)range: <=7.1.8, <=6.20.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.