Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-5867HistoryDec 31, 2006 - 5:00 a.m.
CVE-2006-5867
2006-12-3105:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
0.131 Low
EPSS
Percentile
95.5%
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | fetchmail | < 6.3.6-1 | fetchmail_6.3.6-1_all.deb |
| Debian | 11 | all | fetchmail | < 6.3.6-1 | fetchmail_6.3.6-1_all.deb |
| Debian | 10 | all | fetchmail | < 6.3.6-1 | fetchmail_6.3.6-1_all.deb |
| Debian | 999 | all | fetchmail | < 6.3.6-1 | fetchmail_6.3.6-1_all.deb |
| Debian | 13 | all | fetchmail | < 6.3.6-1 | fetchmail_6.3.6-1_all.deb |
Related
openvas
openvas
FreeBSD Ports: fetchmail
2008-09-04 00:00:00
Mandriva Update for fetchmail MDKSA-2007:016 (fetchmail)
2009-04-09 00:00:00
Mandriva Update for fetchmail MDKSA-2007:016 (fetchmail)
2009-04-09 00:00:00
ubuntucve
ubuntucve
CVE-2006-5867
2006-12-31 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : fetchmail (MDKSA-2007:016)
2007-02-18 00:00:00
Debian DSA-1259-1 : fetchmail - programming error
2007-02-15 00:00:00
debian
debian
[SECURITY] [DSA 1259-1] New fetchmail packages fix information disclosure
2007-02-14 20:46:56
ubuntu
ubuntu
fetchmail vulnerability
2007-01-11 00:00:00
securityvulns
securityvulns
fetchmail security announcement 2006-02 (CVE-2006-5867)
2007-01-07 00:00:00
cve
cve
CVE-2006-5867
2006-12-31 05:00:00
freebsd
freebsd
fetchmail -- TLS enforcement problem/MITM attack/password exposure
2007-01-04 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package fetchmail version 6.3.6-alt1
2007-01-08 00:00:00
centos
centos
fetchmail, fetchmailconf security update
2007-01-31 22:51:28
fetchmail security update
2007-01-31 18:34:21
fedora
fedora
[SECURITY] Fedora Core 6 Update: fetchmail-6.3.6-1.fc6
2007-01-16 17:50:52
[SECURITY] Fedora Core 5 Update: fetchmail-6.3.6-1.fc5
2007-01-16 17:50:33
gentoo
gentoo
Fetchmail: Denial of Service and password disclosure
2007-01-22 00:00:00
redhat
redhat
(RHSA-2007:0018) Moderate: fetchmail security update
2007-01-31 00:00:00
slackware
slackware
[slackware-security] fetchmail
2007-01-24 21:10:52
oraclelinux
oraclelinux
Moderate: fetchmail security update
2007-02-01 00:00:00
suse
suse
local privilege escalation in XFree86-server,xorg-x11-server,xloader
2007-01-12 17:40:25
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
0.131 Low
EPSS
Percentile
95.5%
Related for DEBIANCVE:CVE-2006-5867