This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:fetchmail:fetchmail:6.2.6:pre8 |
| Detail | |||
|---|---|---|---|
| Vendor | Fetchmail | First view | 2005-12-20 |
| Product | Fetchmail | Last view | 2012-12-21 |
| Version | 6.2.6 | Type | Application |
| Edition | |||
| Language | |||
| Update | pre8 | ||
| CPE Product | cpe:/a:fetchmail:fetchmail | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5.8 | 2012-12-21 | CVE-2012-3482 | Network | Medium | None Requ... | |
| 5 | 2011-06-02 | CVE-2011-1947 | Network | Low | None Requ... | |
| 4.3 | 2010-05-07 | CVE-2010-1167 | Network | Medium | None Requ... | |
| 6.4 | 2009-08-07 | CVE-2009-2666 | Network | Low | None Requ... | |
| 4.3 | 2008-06-16 | CVE-2008-2711 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5 | 2007-08-27 | CVE-2007-4565 | Network | Low | None Requ... | |
| 7.8 | 2006-12-31 | CVE-2006-5867 | Network | Low | None Requ... | |
| 7.8 | 2005-12-20 | CVE-2005-4348 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (3) | CWE-20 | Improper Input Validation |
| 33% (2) | CWE-399 | Resource Management Errors |
| 16% (1) | CWE-310 | Cryptographic Issues |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:9659 | fetchmail before 6.3.1 and before 6.2.5.5, when configured for multidrop mode... |
| oval:org.mitre.oval:def:10566 | fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cle... |
| oval:org.mitre.oval:def:10528 | sink.c in fetchmail before 6.3.9 allows context-dependent attackers to cause ... |
| oval:org.mitre.oval:def:10950 | fetchmail 6.3.8 and earlier, when running in -v -v (aka verbose) mode, allows... |
| oval:org.mitre.oval:def:11059 | socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 74824 | fetchmail STARTTLS / STLS Request Acknowledgement Wait Time Limit Remote DoS |
| 64795 | fetchmail Multi-character Locale Invalid Character Remote DoS |
| 56855 | Fetchmail X.509 Certificate Authority (CA) Common Name Null Byte Handling SSL... |
| 46304 | Fetchmail Large Header Verbose Printing DoS |
| 45833 | Fetchmail SMTP Warning Message Refusal DoS |
| id | Description |
|---|---|
| 31580 | Fetchmail TLS Enforcement Cleartext Credential Disclosure |
| 21906 | Fetchmail Multidrop Mode Headerless Message Remote DoS |
