Описание
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 6.3.2-2ubuntu2.1 |
| devel | released | 6.3.6-1ubuntu2 |
| edgy | released | 6.3.4-1ubuntu4.1 |
| feisty | released | 6.3.6-1ubuntu2 |
| upstream | needs-triage |
Показывать по
EPSS
7.8 High
CVSS2
Связанные уязвимости
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may trans ...
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
EPSS
7.8 High
CVSS2