11 matches found
SLES9: Security update for fetchmail
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: fetchmail For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012536 within the...
Gentoo Security Advisory GLSA 200507-21 (fetchmail)
The remote host is missing updates announced in advisory GLSA 200507-21. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200507-21 (fetchmail)
The remote host is missing updates announced in advisory GLSA 200507-21. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 774-1 (fetchmail)
The remote host is missing an update to fetchmail announced via advisory DSA 774-1. Edward Shornock discovered a bug in the UIDL handling code of fetchmail, a common POP3, APOP and IMAP mail fetching utility. A malicious POP3 server could exploit this problem and inject arbitrary code that will b...
Fetchmail POP3客户端缓冲区溢出漏洞
BUGTRAQ ID: 14349 CVECAN ID: CVE-2005-2335 fetchmail是免费的软件包,可以从远程POP2、POP3、IMAP、ETRN或ODMR服务器检索邮件并将其转发给本地SMTP、LMTP服务器或消息传送代理。 fetchmail的POP3客户端在处理服务器回应时存在缓冲区溢出漏洞,恶意服务器可能利用此漏洞在客户端上执行任意指令。...
CentOS 3 / 4 : fetchmail (CESA-2005:640)
Updated fetchmail packages that fix a security flaw are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility. A buffer overflow was discovered in fetchmail's POP3 client. A...
FreeBSD : fetchmail -- remote root/code injection from malicious POP3 server (3497d7be-2fef-45f4-8162-9063751b573a)
fetchmail's POP3/UIDL code does not truncate received UIDs properly. A malicious or compromised POP3 server can thus corrupt fetchmail's stack and inject code when fetchmail is using UIDL, either through configuration, or as a result of certain server capabilities. Note that fetchmail is run as...
CVE-2005-2335
CVE-2005-2335: Buffer overflow in fetchmail's POP3 client (UIDL handling) allows a remote POP3 server to crash fetchmail or potentially execute arbitrary code. Affects fetchmail prior to the patched release. Remediation involves upgrading to the fixed fetchmail version (e.g., 6.2.5.2 per the init...
CVE-2005-2335
Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct...
fetchmail security update
CentOS Errata and Security Advisory CESA-2005:640 Updated fetchmail packages that fix a security flaw are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility. A buffer...
RHEL 4 : fetchmail (RHSA-2005:640)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2005:640 advisory. Fetchmail is a remote mail retrieval and forwarding utility. A buffer overflow was discovered in fetchmail's POP3 client. A malicious server could cau...