This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:fetchmail:fetchmail:4.6.9
Detail
VendorFetchmailFirst view 2001-02-12
ProductFetchmailLast view 2010-05-07
Version4.6.9TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:fetchmail:fetchmail

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.32010-05-07CVE-2010-1167NetworkMediumNone Requ...
6.42009-08-07CVE-2009-2666NetworkLowNone Requ...
4.32008-06-16CVE-2008-2711NetworkMediumNone Requ...
52007-08-27CVE-2007-4565NetworkLowNone Requ...
7.82006-12-31CVE-2006-5867NetworkLowNone Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82005-12-20CVE-2005-4348NetworkLowNone Requ...
52005-07-27CVE-2005-2335NetworkLowNone Requ...
52003-11-17CVE-2003-0792NetworkLowNone Requ...
7.52002-12-23CVE-2002-1365NetworkLowNone Requ...
52002-10-11CVE-2002-1175NetworkLowNone Requ...
7.52002-10-11CVE-2002-1174NetworkLowNone Requ...
52002-06-25CVE-2002-0146NetworkLowNone Requ...
7.52001-12-06CVE-2001-0819NetworkLowNone Requ...
2.12001-09-06CVE-2001-1378LocalLowNone Requ...
102001-08-31CVE-2001-1009NetworkLowNone Requ...
102001-02-12CVE-2001-0101NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
35% (5)CWE-20Improper Input Validation
28% (4)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (2)CWE-399Resource Management Errors
7% (1)CWE-310Cryptographic Issues
7% (1)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 1 More...
%idName
7% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-100Overflow Buffers
CAPEC-119Resource Depletion
CAPEC-123Buffer Attacks

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:8833Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote ...
oval:org.mitre.oval:def:1124RHE4 Fetchmail Buffer Overflow via Long UIDL Responses
oval:org.mitre.oval:def:1038RHE3 Fetchmail Buffer Overflow via Long UIDL Responses
oval:org.mitre.oval:def:9659fetchmail before 6.3.1 and before 6.2.5.5, when configured for multidrop mode...
oval:org.mitre.oval:def:10566fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cle...
Hide | Show 4 More...
idName
oval:org.mitre.oval:def:10528sink.c in fetchmail before 6.3.9 allows context-dependent attackers to cause ...
oval:org.mitre.oval:def:10950fetchmail 6.3.8 and earlier, when running in -v -v (aka verbose) mode, allows...
oval:org.mitre.oval:def:11059socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character...
oval:org.mitre.oval:def:22871ELSA-2009:1427: fetchmail security update (Moderate)

Open Source Vulnerability Database (OSVDB)

idDescription
64795fetchmail Multi-character Locale Invalid Character Remote DoS
56855Fetchmail X.509 Certificate Authority (CA) Common Name Null Byte Handling SSL...
46304Fetchmail Large Header Verbose Printing DoS
45833Fetchmail SMTP Warning Message Refusal DoS
31580Fetchmail TLS Enforcement Cleartext Credential Disclosure
Hide | Show 13 More...
idDescription
21906Fetchmail Multidrop Mode Headerless Message Remote DoS
18174Fetchmail UIDL POP3 Server Response Overflow
10330Fetchmail POP3 Reply Negative Index Privilege Escalation
10329Fetchmail IMAP Server Negative Index Privilege Escalation
10328Fetchmail AUTHENTICATE GSSAPI Command Unspecified Issue
5537Fetchmail Header To: Field Overflow
5405Fetchmail Message Index Arbitrary File Overwrite
4604Fetchmail readheaders Overflow
4603Fetchmail parse_received Command Execution Overflow
4602Fetchmail getmxrecord Overflow DoS
4595Fetchmail IMAP Message Count Overflow
4594Fetchmail @ Character Local Address Saturation Overflow
2699Fetchmail Email Long Line Handling DoS

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2011-08-09Name : CentOS Update for fetchmail CESA-2009:1427 centos3 i386
File : nvt/gb_CESA-2009_1427_fetchmail_centos3_i386.nasl
2011-08-09Name : CentOS Update for fetchmail CESA-2009:1427 centos4 i386
File : nvt/gb_CESA-2009_1427_fetchmail_centos4_i386.nasl
2011-08-09Name : CentOS Update for fetchmail CESA-2009:1427 centos5 i386
File : nvt/gb_CESA-2009_1427_fetchmail_centos5_i386.nasl
2011-06-10Name : Mandriva Update for fetchmail MDVSA-2011:107 (fetchmail)
File : nvt/gb_mandriva_MDVSA_2011_107.nasl
2011-03-09Name : Gentoo Security Advisory GLSA 201006-12 (fetchmail)
File : nvt/glsa_201006_12.nasl
Hide | Show 20 More...
idDescription
2010-05-12Name : Mac OS X Security Update 2009-001
File : nvt/macosx_secupd_2009-001.nasl
2010-05-12Name : Mac OS X 10.6.2 Update / Mac OS X Security Update 2009-006
File : nvt/macosx_upd_10_6_2_secupd_2009-006.nasl
2010-05-04Name : FreeBSD Ports: fetchmail
File : nvt/freebsd_fetchmail14.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:201-1 (fetchmail)
File : nvt/mdksa_2009_201_1.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13Name : SLES10: Security update for fetchmail
File : nvt/sles10_fetchmail.nasl
2009-10-13Name : SLES10: Security update for fetchmail
File : nvt/sles10_fetchmail0.nasl
2009-10-11Name : SLES11: Security update for fetchmail
File : nvt/sles11_fetchmail.nasl
2009-10-10Name : SLES9: Security update for fetchmail
File : nvt/sles9p5015579.nasl
2009-10-10Name : SLES9: Security update for fetchmail
File : nvt/sles9p5055302.nasl
2009-10-10Name : SLES9: Security update for fetchmail
File : nvt/sles9p5012536.nasl
2009-10-10Name : SLES9: Security update for fetchmail
File : nvt/sles9p5012567.nasl
2009-09-15Name : CentOS Security Advisory CESA-2009:1427 (fetchmail)
File : nvt/ovcesa2009_1427.nasl
2009-09-09Name : Fedora Core 10 FEDORA-2009-8770 (fetchmail)
File : nvt/fcore_2009_8770.nasl
2009-09-09Name : Fedora Core 11 FEDORA-2009-8780 (fetchmail)
File : nvt/fcore_2009_8780.nasl
2009-09-09Name : RedHat Security Advisory RHSA-2009:1427
File : nvt/RHSA_2009_1427.nasl
2009-08-17Name : FreeBSD Ports: fetchmail
File : nvt/freebsd_fetchmail12.nasl
2009-08-17Name : Debian Security Advisory DSA 1852-1 (fetchmail)
File : nvt/deb_1852_1.nasl
2009-08-17Name : Ubuntu USN-816-1 (fetchmail)
File : nvt/ubuntu_816_1.nasl
2009-08-17Name : SuSE Security Advisory SUSE-SA:2009:044 (subversion)
File : nvt/suse_sa_2009_044.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2009-1427.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0018.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing a security update.
File : sl_20090908_fetchmail_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2011-06-08Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2011-107.nasl - Type : ACT_GATHER_INFO
2010-06-02Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201006-12.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2010-05-17Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2010-136-01.nasl - Type : ACT_GATHER_INFO
2010-04-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_09910d764c8211df83fb0015587e2cc1.nasl - Type : ACT_GATHER_INFO
2010-02-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1852.nasl - Type : ACT_GATHER_INFO
2009-11-09Name : The remote host is missing a Mac OS X update that fixes various security issues.
File : macosx_10_6_2.nasl - Type : ACT_GATHER_INFO
2009-11-09Name : The remote host is missing a Mac OS X update that fixes various security issues.
File : macosx_SecUpd2009-006.nasl - Type : ACT_GATHER_INFO
2009-10-06Name : The remote SuSE system is missing the security patch fetchmail-6410
File : suse_fetchmail-6410.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_12468.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_fetchmail-6409.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_11814.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_fetchmail-090807.nasl - Type : ACT_GATHER_INFO
2009-09-09Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2009-1427.nasl - Type : ACT_GATHER_INFO
2009-09-09Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2009-1427.nasl - Type : ACT_GATHER_INFO
2009-09-04Name : The remote Fedora host is missing a security update.
File : fedora_2009-8770.nasl - Type : ACT_GATHER_INFO
2009-09-04Name : The remote Fedora host is missing a security update.
File : fedora_2009-8780.nasl - Type : ACT_GATHER_INFO
2009-08-13Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-816-1.nasl - Type : ACT_GATHER_INFO
2009-08-13Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2009-201.nasl - Type : ACT_GATHER_INFO
2009-08-12Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_5179d85c868311de91b90022157515b2.nasl - Type : ACT_GATHER_INFO
2009-08-12Name : The remote SuSE system is missing a security patch for fetchmail
File : suse_11_1_fetchmail-090807.nasl - Type : ACT_GATHER_INFO
2009-08-12Name : The remote SuSE system is missing a security patch for fetchmail
File : suse_11_0_fetchmail-090807.nasl - Type : ACT_GATHER_INFO
2009-08-07Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2009-218-01.nasl - Type : ACT_GATHER_INFO