This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:fetchmail:fetchmail:4.6.9
Detail
VendorFetchmailFirst view 2001-02-12
ProductFetchmailLast view 2010-05-07
Version4.6.9TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:fetchmail:fetchmail

Activity : Yearly

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentification
4.32010-05-07CVE-2010-1167NetworkMediumNone Requ...
6.42009-08-07CVE-2009-2666NetworkLowNone Requ...
4.32008-06-16CVE-2008-2711NetworkMediumNone Requ...
52007-08-27CVE-2007-4565NetworkLowNone Requ...
7.82006-12-31CVE-2006-5867NetworkLowNone Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentification
7.82005-12-20CVE-2005-4348NetworkLowNone Requ...
52005-07-27CVE-2005-2335NetworkLowNone Requ...
52003-11-17CVE-2003-0792NetworkLowNone Requ...
7.52002-12-23CVE-2002-1365NetworkLowNone Requ...
52002-10-11CVE-2002-1175NetworkLowNone Requ...
7.52002-10-11CVE-2002-1174NetworkLowNone Requ...
52002-06-25CVE-2002-0146NetworkLowNone Requ...
7.52001-12-06CVE-2001-0819NetworkLowNone Requ...
2.12001-09-06CVE-2001-1378LocalLowNone Requ...
102001-08-31CVE-2001-1009NetworkLowNone Requ...
102001-02-12CVE-2001-0101NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
35% (5)CWE-20Improper Input Validation
28% (4)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (2)CWE-399Resource Management Errors
7% (1)CWE-310Cryptographic Issues
7% (1)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 1 More...
%idName
7% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')

CAPEC : Common Attack Pattern Enumeration & Classificatio

idName
CAPEC-100Overflow Buffers
CAPEC-119Resource Depletion
CAPEC-123Buffer Attacks

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:8833Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote ...
oval:org.mitre.oval:def:1124RHE4 Fetchmail Buffer Overflow via Long UIDL Responses
oval:org.mitre.oval:def:1038RHE3 Fetchmail Buffer Overflow via Long UIDL Responses
oval:org.mitre.oval:def:9659fetchmail before 6.3.1 and before 6.2.5.5, when configured for multidrop mode...
oval:org.mitre.oval:def:10566fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cle...
Hide | Show 3 More...
idName
oval:org.mitre.oval:def:10528sink.c in fetchmail before 6.3.9 allows context-dependent attackers to cause ...
oval:org.mitre.oval:def:10950fetchmail 6.3.8 and earlier, when running in -v -v (aka verbose) mode, allows...
oval:org.mitre.oval:def:11059socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character...

Open Source Vulnerability Database (OSVDB)

idDescription
64795fetchmail Multi-character Locale Invalid Character Remote DoS
56855Fetchmail X.509 Certificate Authority (CA) Common Name Null Byte Handling SSL...
46304Fetchmail Large Header Verbose Printing DoS
45833Fetchmail SMTP Warning Message Refusal DoS
31580Fetchmail TLS Enforcement Cleartext Credential Disclosure
Hide | Show 13 More...
idDescription
21906Fetchmail Multidrop Mode Headerless Message Remote DoS
18174Fetchmail UIDL POP3 Server Response Overflow
10330Fetchmail POP3 Reply Negative Index Privilege Escalation
10329Fetchmail IMAP Server Negative Index Privilege Escalation
10328Fetchmail AUTHENTICATE GSSAPI Command Unspecified Issue
5537Fetchmail Header To: Field Overflow
5405Fetchmail Message Index Arbitrary File Overwrite
4604Fetchmail readheaders Overflow
4603Fetchmail parse_received Command Execution Overflow
4602Fetchmail getmxrecord Overflow DoS
4595Fetchmail IMAP Message Count Overflow
4594Fetchmail @ Character Local Address Saturation Overflow
2699Fetchmail Email Long Line Handling DoS