Lucene search

K
cveMitreCVE-2006-5867
HistoryJan 09, 2007 - 12:00 a.m.

CVE-2006-5867

2007-01-0900:00:00
CWE-20
mitre
web.nvd.nist.gov
48
cve-2006-5867
fetchmail
tls
cleartext passwords
man-in-the-middle attack
nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

0.131

Percentile

95.6%

fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.

Affected configurations

Nvd
Node
fetchmailfetchmailRange6.3.6rc3
OR
fetchmailfetchmailMatch4.5.1
OR
fetchmailfetchmailMatch4.5.2
OR
fetchmailfetchmailMatch4.5.3
OR
fetchmailfetchmailMatch4.5.4
OR
fetchmailfetchmailMatch4.5.5
OR
fetchmailfetchmailMatch4.5.6
OR
fetchmailfetchmailMatch4.5.7
OR
fetchmailfetchmailMatch4.5.8
OR
fetchmailfetchmailMatch4.6.0
OR
fetchmailfetchmailMatch4.6.1
OR
fetchmailfetchmailMatch4.6.2
OR
fetchmailfetchmailMatch4.6.3
OR
fetchmailfetchmailMatch4.6.4
OR
fetchmailfetchmailMatch4.6.5
OR
fetchmailfetchmailMatch4.6.6
OR
fetchmailfetchmailMatch4.6.7
OR
fetchmailfetchmailMatch4.6.8
OR
fetchmailfetchmailMatch4.6.9
OR
fetchmailfetchmailMatch4.7.0
OR
fetchmailfetchmailMatch4.7.1
OR
fetchmailfetchmailMatch4.7.2
OR
fetchmailfetchmailMatch4.7.3
OR
fetchmailfetchmailMatch4.7.4
OR
fetchmailfetchmailMatch4.7.5
OR
fetchmailfetchmailMatch4.7.6
OR
fetchmailfetchmailMatch4.7.7
OR
fetchmailfetchmailMatch5.0.0
OR
fetchmailfetchmailMatch5.0.1
OR
fetchmailfetchmailMatch5.0.2
OR
fetchmailfetchmailMatch5.0.3
OR
fetchmailfetchmailMatch5.0.4
OR
fetchmailfetchmailMatch5.0.5
OR
fetchmailfetchmailMatch5.0.6
OR
fetchmailfetchmailMatch5.0.7
OR
fetchmailfetchmailMatch5.0.8
OR
fetchmailfetchmailMatch5.1.0
OR
fetchmailfetchmailMatch5.1.4
OR
fetchmailfetchmailMatch5.2.0
OR
fetchmailfetchmailMatch5.2.1
OR
fetchmailfetchmailMatch5.2.3
OR
fetchmailfetchmailMatch5.2.4
OR
fetchmailfetchmailMatch5.2.7
OR
fetchmailfetchmailMatch5.2.8
OR
fetchmailfetchmailMatch5.3.0
OR
fetchmailfetchmailMatch5.3.1
OR
fetchmailfetchmailMatch5.3.3
OR
fetchmailfetchmailMatch5.3.8
OR
fetchmailfetchmailMatch5.4.0
OR
fetchmailfetchmailMatch5.4.3
OR
fetchmailfetchmailMatch5.4.4
OR
fetchmailfetchmailMatch5.4.5
OR
fetchmailfetchmailMatch5.5.0
OR
fetchmailfetchmailMatch5.5.2
OR
fetchmailfetchmailMatch5.5.3
OR
fetchmailfetchmailMatch5.5.5
OR
fetchmailfetchmailMatch5.5.6
OR
fetchmailfetchmailMatch5.6.0
OR
fetchmailfetchmailMatch5.7.0
OR
fetchmailfetchmailMatch5.7.2
OR
fetchmailfetchmailMatch5.7.4
OR
fetchmailfetchmailMatch5.8
OR
fetchmailfetchmailMatch5.8.1
OR
fetchmailfetchmailMatch5.8.2
OR
fetchmailfetchmailMatch5.8.3
OR
fetchmailfetchmailMatch5.8.4
OR
fetchmailfetchmailMatch5.8.5
OR
fetchmailfetchmailMatch5.8.6
OR
fetchmailfetchmailMatch5.8.11
OR
fetchmailfetchmailMatch5.8.13
OR
fetchmailfetchmailMatch5.8.14
OR
fetchmailfetchmailMatch5.8.17
OR
fetchmailfetchmailMatch5.9.0
OR
fetchmailfetchmailMatch5.9.4
OR
fetchmailfetchmailMatch5.9.5
OR
fetchmailfetchmailMatch5.9.8
OR
fetchmailfetchmailMatch5.9.10
OR
fetchmailfetchmailMatch5.9.11
OR
fetchmailfetchmailMatch5.9.13
OR
fetchmailfetchmailMatch6.0.0
OR
fetchmailfetchmailMatch6.1.0
OR
fetchmailfetchmailMatch6.1.3
OR
fetchmailfetchmailMatch6.2.0
OR
fetchmailfetchmailMatch6.2.1
OR
fetchmailfetchmailMatch6.2.2
OR
fetchmailfetchmailMatch6.2.3
OR
fetchmailfetchmailMatch6.2.4
OR
fetchmailfetchmailMatch6.2.5
OR
fetchmailfetchmailMatch6.2.5.1
OR
fetchmailfetchmailMatch6.2.5.2
OR
fetchmailfetchmailMatch6.2.5.4
OR
fetchmailfetchmailMatch6.2.6pre4
OR
fetchmailfetchmailMatch6.2.6pre8
OR
fetchmailfetchmailMatch6.2.6pre9
OR
fetchmailfetchmailMatch6.2.9rc10
OR
fetchmailfetchmailMatch6.2.9rc3
OR
fetchmailfetchmailMatch6.2.9rc4
OR
fetchmailfetchmailMatch6.2.9rc5
OR
fetchmailfetchmailMatch6.2.9rc7
OR
fetchmailfetchmailMatch6.2.9rc8
OR
fetchmailfetchmailMatch6.2.9rc9
OR
fetchmailfetchmailMatch6.3.0
OR
fetchmailfetchmailMatch6.3.1
OR
fetchmailfetchmailMatch6.3.2
OR
fetchmailfetchmailMatch6.3.3
OR
fetchmailfetchmailMatch6.3.4
OR
fetchmailfetchmailMatch6.3.5
OR
fetchmailfetchmailMatch6.3.6rc1
OR
fetchmailfetchmailMatch6.3.6rc2
VendorProductVersionCPE
fetchmailfetchmail*cpe:2.3:a:fetchmail:fetchmail:*:rc3:*:*:*:*:*:*
fetchmailfetchmail4.5.1cpe:2.3:a:fetchmail:fetchmail:4.5.1:*:*:*:*:*:*:*
fetchmailfetchmail4.5.2cpe:2.3:a:fetchmail:fetchmail:4.5.2:*:*:*:*:*:*:*
fetchmailfetchmail4.5.3cpe:2.3:a:fetchmail:fetchmail:4.5.3:*:*:*:*:*:*:*
fetchmailfetchmail4.5.4cpe:2.3:a:fetchmail:fetchmail:4.5.4:*:*:*:*:*:*:*
fetchmailfetchmail4.5.5cpe:2.3:a:fetchmail:fetchmail:4.5.5:*:*:*:*:*:*:*
fetchmailfetchmail4.5.6cpe:2.3:a:fetchmail:fetchmail:4.5.6:*:*:*:*:*:*:*
fetchmailfetchmail4.5.7cpe:2.3:a:fetchmail:fetchmail:4.5.7:*:*:*:*:*:*:*
fetchmailfetchmail4.5.8cpe:2.3:a:fetchmail:fetchmail:4.5.8:*:*:*:*:*:*:*
fetchmailfetchmail4.6.0cpe:2.3:a:fetchmail:fetchmail:4.6.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 1091

References

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

0.131

Percentile

95.6%