CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Hacker One•added 2020/08/07 11:29 a.m.•167 views

PortSwigger Web Security: SMTP interaction theft via MITM

See http://www.postfix.org/CVE-2011-0411.html for adetailled description. Impact MitM could obtain user credentials...

6.8CVSS0.8AI score0.16334EPSS

Exploits1

OpenVAS•added 2015/10/06 12:0 a.m.•24 views

Oracle: Security Advisory (ELSA-2011-0423)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.7AI score0.16334EPSS

Tenable Nessus•added 2014/06/13 12:0 a.m.•30 views

openSUSE Security Update : pure-ftpd (openSUSE-SU-2011:0483-1)

Pure-ftpd is vulnerable to the STARTTLS command injection issue similar to CVE-2011-0411 of postfix. CVE-2011-1575 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...

6.8CVSS8AI score0.33341EPSS

Exploits1References4

Tenable Nessus•added 2014/06/13 12:0 a.m.•23 views

openSUSE Security Update : postfix (openSUSE-SU-2011:0389-1)

postfix did not clear the receive buffer after the STARTTLS command. A man-in-the middle could therefore inject commands in the unencrypted stream that get interpreted in the encrypted phase after STARTTLS CVE-2011-0411. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

Tenable Nessus•added 2014/06/13 12:0 a.m.•35 views

openSUSE Security Update : pure-ftpd (openSUSE-SU-2011:0483-1)

6.8CVSS8AI score0.33341EPSS

Exploits1References4

Tenable Nessus•added 2013/07/12 12:0 a.m.•34 views

Oracle Linux 5 : post (ELSA-2011-0422)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0422 advisory. - fix CVE-2011-0411 683387 - fix CVE-2008-2937 683387 Tenable has extracted the preceding description block directly from the Oracle Linux security...

6.8CVSS8.4AI score0.16334EPSS

Tenable Nessus•added 2013/07/12 12:0 a.m.•25 views

Oracle Linux 6 : post (ELSA-2011-0423)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0423 advisory. 2:2.6.6-2.1 - fix CVE-2011-0411 682978 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus...

6.8CVSS8.2AI score0.16334EPSS

Prion•added 2012/11/11 1:0 p.m.•25 views

Command injection

The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection"...

6.8CVSS6.7AI score0.16334EPSS

Exploits1References3Affected Software1

Cvelist•added 2012/11/11 11:0 a.m.•26 views

CVE-2012-3523

8.9AI score0.03233EPSS

Exploits0References3

CVE•added 2012/11/11 11:0 a.m.•73 views

CVE-2012-3523

CVE-2012-3523 affects nnrpd (INN) prior to 2.5.3, where STARTTLS does not properly restrict I/O buffering. This enables MITM attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is established (plaintext command injection), related to CVE...

6.8CVSS6.8AI score0.03233EPSS

Exploits0References3Affected Software1

OpenVAS•added 2012/10/03 12:0 a.m.•27 views

Mandriva Update for inn MDVSA-2012:156 (inn)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Tenable Nessus•added 2012/10/03 12:0 a.m.•44 views

Mandriva Linux Security Advisory : inn (MDVSA-2012:156)

A security issue was identified and fixed in ISC INN : The STARTTLS implementation in INN's NNTP server for readers, nnrpd, before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command tha...

6.8CVSS8.2AI score0.03233EPSS

Exploits0References2

FreeBSD•added 2012/08/14 12:0 a.m.•67 views

inn -- plaintext command injection into encrypted channel

INN developers report: Fixed a possible plaintext command injection during the negotiation of a TLS layer. The vulnerability detailed in CVE-2011-0411 affects the STARTTLS and AUTHINFO SASL commands. nnrpd now resets its read buffer upon a successful negotiation of a TLS layer. It prevents...

6.8CVSS9.5AI score0.16334EPSS

Exploits1References1

Tenable Nessus•added 2012/08/01 12:0 a.m.•33 views

Scientific Linux Security Update : postfix on SL6.x i386/x86_64

It was discovered that Postfix did not flush the received SMTP commands buffer after switching to TLS encryption for an SMTP session. A man-in-the-middle attacker could use this flaw to inject SMTP commands into a victim's session during the plain text phase. This would lead to those commands bei...

Tenable Nessus•added 2012/08/01 12:0 a.m.•35 views

Scientific Linux Security Update : postfix on SL4.x, SL5.x i386/x86_64

6.8CVSS8.4AI score0.16334EPSS

OpenVAS•added 2012/07/30 12:0 a.m.•27 views

CentOS Update for postfix CESA-2011:0422 centos5 x86_64

OpenVAS•added 2012/07/30 12:0 a.m.•28 views

CentOS Update for postfix CESA-2011:0422 centos5 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0422 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.8CVSS8.7AI score0.16334EPSS

OpenVAS•added 2012/06/06 12:0 a.m.•26 views

RedHat Update for postfix RHSA-2011:0423-01

6.8CVSS9.3AI score0.16334EPSS