Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:51 a.m.8 views

CVE-2012-0070

spamdyke prior to 4.2.1: STARTTLS reveals plaintext...

7.5CVSS6.8AI score0.00937EPSS
Exploits0References1
CVE
CVE
added 2020/01/15 1:40 p.m.32 views

CVE-2012-0070

CVE-2012-0070 concerns spamdyke prior to 4.2.1, where the TLS upgrade path after STARTTLS does not properly clear transport buffers, allowing insertion of arbitrary plaintext during the plaintext phase (e.g., SMTP commands). The vulnerability is triggered during the plaintext-to-TLS transition an...

7.5CVSS7.4AI score0.00937EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/01/15 1:40 p.m.20 views

CVE-2012-0070

spamdyke prior to 4.2.1: STARTTLS reveals plaintext...

7.5AI score0.00937EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/02/12 12:0 a.m.22 views

FreeBSD Ports: spamdyke

The remote host is missing an update to the system as announced in the referenced advisory. Copyright C 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program...

7.5CVSS7.6AI score0.00937EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/01/09 12:0 a.m.18 views

FreeBSD : spamdyke -- STARTTLS Plaintext Injection Vulnerability (a47af810-3a17-11e1-a1be-00e0815b8da8)

Secunia reports : The vulnerability is caused due to the TLS implementation not properly clearing transport layer buffers when upgrading from plaintext to ciphertext after receiving the 'STARTTLS' command. This can be exploited to insert arbitrary plaintext data e.g. SMTP commands during the...

7.5CVSS7.5AI score0.00937EPSS
Exploits0References3
Rows per page
Query Builder