Описание
imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing the network.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| saucy | DNE | |
| upstream | needs-triage |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing the network.
imapsync before 1.584, when running with the --tls option, attempts a ...
imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing the network.
Уязвимость программной платформы Java Runtime Environment, позволяющая удаленному злоумышленнику нарушить конфиденциальность и целостность данных
4.3 Medium
CVSS2