Executive Summary

Summary
Titleevolution-data-server security update
Informations
NameRHSA-2007:0344First vendor Publication2007-05-30
VendorRedHatLast vendor Modification2007-05-30
Severity (Vendor) ModerateRevision01

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:N/A:N)
Cvss Base Score2.6Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityHigh
Cvss Expoit Score4.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated evolution-data-server package that fixes a security bug are now available for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

3. Problem description:

The evolution-data-server package provides a unified backend for programs that work with contacts, tasks, and calendar information.

A flaw was found in the way evolution-data-server processed certain APOP authentication requests. By sending certain responses when evolution-data-server attempted to authenticate against an APOP server, a remote attacker could potentially acquire certain portions of a user's authentication credentials. (CVE-2007-1558)

All users of evolution-data-server should upgrade to these updated packages, which contain a backported patch which resolves this issue.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/FAQ_58_10188

5. Bug IDs fixed (http://bugzilla.redhat.com/):

235289 - CVE-2007-1558 Evolution APOP information disclosure

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2007-0344.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:9782
 
Oval ID: oval:org.mitre.oval:def:9782
Title: The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.
Description: The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.
Family: unix Class: vulnerability
Reference(s): CVE-2007-1558
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22650
 
Oval ID: oval:org.mitre.oval:def:22650
Title: ELSA-2007:0344: evolution-data-server security update (Moderate)
Description: The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.
Family: unix Class: patch
Reference(s): ELSA-2007:0344-01
CVE-2007-1558
Version: 6
Platform(s): Oracle Linux 5
Product(s): evolution-data-server
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22506
 
Oval ID: oval:org.mitre.oval:def:22506
Title: ELSA-2007:0385: fetchmail security update (Moderate)
Description: The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.
Family: unix Class: patch
Reference(s): ELSA-2007:0385-03
CVE-2007-1558
Version: 6
Platform(s): Oracle Linux 5
Product(s): fetchmail
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

OpenVAS Exploits

DateDescription
2011-08-09Name : CentOS Update for ruby CESA-2009:1140 centos5 i386
File : nvt/gb_CESA-2009_1140_ruby_centos5_i386.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13Name : SLES10: Security update for mutt
File : nvt/sles10_mutt0.nasl
2009-10-10Name : SLES9: Security update for Mozilla suite
File : nvt/sles9p5016317.nasl
2009-07-06Name : RedHat Security Advisory RHSA-2009:1140
File : nvt/RHSA_2009_1140.nasl
2009-07-06Name : CentOS Security Advisory CESA-2009:1140 (ruby)
File : nvt/ovcesa2009_1140.nasl
2009-05-05Name : HP-UX Update for Thunderbird HPSBUX02156
File : nvt/gb_hp_ux_HPSBUX02156.nasl
2009-04-09Name : Mandriva Update for fetchmail MDKSA-2007:105 (fetchmail)
File : nvt/gb_mandriva_MDKSA_2007_105.nasl
2009-04-09Name : Mandriva Update for evolution MDKSA-2007:107 (evolution)
File : nvt/gb_mandriva_MDKSA_2007_107.nasl
2009-04-09Name : Mandriva Update for mutt MDKSA-2007:113 (mutt)
File : nvt/gb_mandriva_MDKSA_2007_113.nasl
2009-04-09Name : Mandriva Update for mozilla-thunderbird MDKSA-2007:119 (mozilla-thunderbird)
File : nvt/gb_mandriva_MDKSA_2007_119.nasl
2009-04-09Name : Mandriva Update for mozilla-thunderbird MDKSA-2007:131 (mozilla-thunderbird)
File : nvt/gb_mandriva_MDKSA_2007_131.nasl
2009-03-23Name : Ubuntu Update for mozilla-thunderbird vulnerabilities USN-469-1
File : nvt/gb_ubuntu_USN_469_1.nasl
2009-03-23Name : Ubuntu Update for fetchmail vulnerabilities USN-520-1
File : nvt/gb_ubuntu_USN_520_1.nasl
2009-02-27Name : Fedora Update for mutt FEDORA-2007-539
File : nvt/gb_fedora_2007_539_mutt_fc6.nasl
2009-02-27Name : Fedora Update for mutt FEDORA-2007-540
File : nvt/gb_fedora_2007_540_mutt_fc5.nasl
2009-02-27Name : Fedora Update for thunderbird FEDORA-2007-550
File : nvt/gb_fedora_2007_550_thunderbird_fc6.nasl
2009-02-27Name : Fedora Update for thunderbird FEDORA-2007-551
File : nvt/gb_fedora_2007_551_thunderbird_fc5.nasl
2009-02-27Name : Fedora Update for devhelp FEDORA-2007-552
File : nvt/gb_fedora_2007_552_devhelp_fc5.nasl
2009-02-27Name : Fedora Update for mutt FEDORA-2007-0001
File : nvt/gb_fedora_2007_0001_mutt_fc7.nasl
2009-02-27Name : Fedora Update for epiphany FEDORA-2007-552
File : nvt/gb_fedora_2007_552_epiphany_fc5.nasl
2009-02-27Name : Fedora Update for seamonkey FEDORA-2007-552
File : nvt/gb_fedora_2007_552_seamonkey_fc5.nasl
2009-02-27Name : Fedora Update for yelp FEDORA-2007-552
File : nvt/gb_fedora_2007_552_yelp_fc5.nasl
2009-02-27Name : Fedora Update for thunderbird FEDORA-2007-0544
File : nvt/gb_fedora_2007_0544_thunderbird_fc7.nasl
2009-02-27Name : Fedora Update for balsa FEDORA-2007-1447
File : nvt/gb_fedora_2007_1447_balsa_fc7.nasl
2009-01-28Name : SuSE Update for mozilla,MozillaFirefox,MozillaThunderbird SUSE-SA:2007:036
File : nvt/gb_suse_2007_036.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200706-06 (mozilla/thunderbird/firefox/xulrunner)
File : nvt/glsa_200706_06.nasl
2008-09-04Name : FreeBSD Ports: fetchmail
File : nvt/freebsd_fetchmail9.nasl
2008-09-04Name : FreeBSD Ports: claws-mail
File : nvt/freebsd_claws-mail0.nasl
2008-01-17Name : Debian Security Advisory DSA 1300-1 (iceape)
File : nvt/deb_1300_1.nasl
2008-01-17Name : Debian Security Advisory DSA 1305-1 (icedove)
File : nvt/deb_1305_1.nasl
0000-00-00Name : Slackware Advisory SSA:2007-152-02 firefox-seamonkey-thunderbird
File : nvt/esoft_slk_ssa_2007_152_02.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
34856APOP Protocol MiTM Crafted IDs/MD5 Collision Cleartext Password Fragment Disc...

Nessus® Vulnerability Scanner

DateDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0344.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0353.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0385.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0386.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0401.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0402.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1140.nasl - Type : ACT_GATHER_INFO
2012-09-24Name : The remote Fedora host is missing a security update.
File : fedora_2007-0002.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090702_ruby_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20070517_evolution_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing a security update.
File : sl_20070530_Thunderbird_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20070530_evolution_data_server_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20070530_seamonkey_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing a security update.
File : sl_20070604_mutt_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing a security update.
File : sl_20070607_fetchmail_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2010-01-06Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2009-1140.nasl - Type : ACT_GATHER_INFO
2009-07-03Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2009-1140.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2007-0401.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0402.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-131.nasl - Type : ACT_GATHER_INFO
2007-12-13Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_mutt-3752.nasl - Type : ACT_GATHER_INFO
2007-11-10Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-469-1.nasl - Type : ACT_GATHER_INFO
2007-11-10Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-520-1.nasl - Type : ACT_GATHER_INFO
2007-11-06Name : The remote Fedora host is missing a security update.
File : fedora_2007-0544.nasl - Type : ACT_GATHER_INFO
2007-11-06Name : The remote Fedora host is missing a security update.
File : fedora_2007-1447.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_MozillaThunderbird-3545.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_MozillaThunderbird-3546.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_seamonkey-3631.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_seamonkey-3632.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_mutt-3702.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_mutt-3751.nasl - Type : ACT_GATHER_INFO
2007-06-21Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200706-06.nasl - Type : ACT_GATHER_INFO
2007-06-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1305.nasl - Type : ACT_GATHER_INFO
2007-06-14Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-119.nasl - Type : ACT_GATHER_INFO
2007-06-12Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1300.nasl - Type : ACT_GATHER_INFO
2007-06-07Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2007-0385.nasl - Type : ACT_GATHER_INFO
2007-06-07Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2007-0385.nasl - Type : ACT_GATHER_INFO
2007-06-05Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-113.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2007-0386.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-550.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-551.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote Fedora Core host is missing one or more security updates.
File : fedora_2007-552.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2007-152-02.nasl - Type : ACT_GATHER_INFO
2007-06-04Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2007-0386.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0344.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-539.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-540.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2007-0344.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2007-0401.nasl - Type : ACT_GATHER_INFO
2007-06-01Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2007-0402.nasl - Type : ACT_GATHER_INFO
2007-05-31Name : The remote Windows host contains a mail client that is affected by multiple v...
File : mozilla_thunderbird_15012.nasl - Type : ACT_GATHER_INFO
2007-05-31Name : A web browser on the remote host is prone to multiple flaws.
File : seamonkey_109.nasl - Type : ACT_GATHER_INFO
2007-05-25Name : The remote host is missing a Mac OS X update that fixes several security issues.
File : macosx_SecUpd2007-005.nasl - Type : ACT_GATHER_INFO
2007-05-20Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0353.nasl - Type : ACT_GATHER_INFO
2007-05-20Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2007-0353.nasl - Type : ACT_GATHER_INFO
2007-05-20Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-105.nasl - Type : ACT_GATHER_INFO
2007-05-20Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-107.nasl - Type : ACT_GATHER_INFO
2007-04-30Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_c389d06dee5711dbbd510016179b2dd5.nasl - Type : ACT_GATHER_INFO
2007-04-10Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_f1c4d133e6d311db99ea0060084a00e5.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2014-02-17 11:50:38
  • Multiple Updates