18 matches found
Linux Distros Unpatched Vulnerability : CVE-2011-1947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a 1 STARTTLS or 2 STLS request, which allows remote servers to cause a denial...
Slackware Advisory SSA:2011-171-01 fetchmail
The remote host is missing an update as announced via advisory SSA:2011-171-01. OpenVAS Vulnerability Test $Id: esoftslkssa201117101.nasl 6581 2017-07-06 13:58:51Z cfischer $ Description: Auto-generated from advisory SSA:2011-171-01 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Security fix for the ALT Linux 5 package fetchmail version 6.3.21-alt1.0.M50P.1
Dec. 1, 2011 Gleb Fotengauer-Malinovskiy 6.3.21-alt1.0.M50P.1 - Backport to p5 branch CVE-2011-1947...
FreeBSD Ports: fetchmail
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Fedora Update for fetchmail FEDORA-2011-8011
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for fetchmail FEDORA-2011-8021
Check for the Version of fetchmail OpenVAS Vulnerability Test Fedora Update for fetchmail FEDORA-2011-8021 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Fedora Update for fetchmail FEDORA-2011-8021
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for fetchmail FEDORA-2011-8059
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 14 : fetchmail-6.3.20-1.fc14 (2011-8021)
This update fixes CVE-2011-1947. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 13 : fetchmail-6.3.20-1.fc13 (2011-8059)
This update fixes CVE-2011-1947. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 15 : fetchmail-6.3.20-1.fc15 (2011-8011)
This update fixes CVE-2011-1947. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / 8.1 / 9.0 / 9.1 / current : fetchmail (SSA:2011-171-01)
New fetchmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
Mandriva Update for fetchmail MDVSA-2011:107 (fetchmail)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Security fix for the ALT Linux 5 package fetchmail version 6.3.20-alt1
June 7, 2011 Michael Shigorin 6.3.20-alt1 - 6.3.20 + fixes CVE-2011-1947: STARTTLS denial of service vulnerability thanks ldv@ for heads-up...
Security fix for the ALT Linux 6 package fetchmail version 6.3.20-alt1
June 7, 2011 Michael Shigorin 6.3.20-alt1 - 6.3.20 + fixes CVE-2011-1947: STARTTLS denial of service vulnerability thanks ldv@ for heads-up...
fetchmail security announcement fetchmail-SA-2011-01 (CVE-2011-1947)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 fetchmail-SA-2011-01: Denial of service possible in STARTTLS mode Topics: fetchmail denial of service in STARTTLS protocol phases Author: Matthias Andree Version: 1.0 Announced: 2011-06-06 Type: Unguarded blocking I/O can cause indefinite application...
CVE-2011-1947
fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a 1 STARTTLS or 2 STLS request, which allows remote servers to cause a denial of service application hang by acknowledging the request but not sending additional packets...
CVE-2011-1947
CVE-2011-1947 affects fetchmail 5.9.9–6.3.19. The issue is an insufficient wait-time limiter after STARTTLS or STLS, allowing a remote server to trigger a denial-of-service (application hang) by acknowledging the request but sending no further packets. The provided documents confirm this vulnerab...