Lucene search
K

32 matches found

OpenVAS
OpenVAS
added 2012/08/10 12:0 a.m.18 views

Gentoo Security Advisory GLSA 201206-34 (msmtp)

The remote host is missing updates announced in advisory GLSA 201206-34. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

6.4CVSS6.6AI score0.0108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/06/26 12:0 a.m.21 views

GLSA-201206-34 : msmtp: X.509 NULL spoofing vulnerability

The remote host is affected by the vulnerability described in GLSA-201206-34 msmtp: X.509 NULL spoofing vulnerability A vulnerability have been discovered in msmtp. Please review the CVE identifier referenced below for details. Impact : A remote attacker might employ a specially crafted certifica...

6.4CVSS5.5AI score0.0108EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2012/06/25 12:0 a.m.28 views

msmtp: X.509 NULL spoofing vulnerability

Background msmtp is an SMTP client and SMTP plugin for mail user agents such as Mutt. Description A vulnerability have been discovered in msmtp. Please review the CVE identifier referenced below for details. Impact A remote attacker might employ a specially crafted certificate to conduct...

6.4CVSS6.4AI score0.0108EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/01/20 12:0 a.m.21 views

openSUSE Security Update : msmtp (msmtp-1813)

msmtp did not properly handle a '0' character in the domain name of SSL certificates CVE-2009-3942. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update msmtp-1813. The text description of this...

6.4CVSS5.3AI score0.0108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/01/20 12:0 a.m.29 views

openSUSE Security Update : msmtp (msmtp-1813)

msmtp did not properly handle a '0' character in the domain name of SSL certificates CVE-2009-3942. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update msmtp-1813. The text description of this...

6.4CVSS5.3AI score0.0108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/01/20 12:0 a.m.18 views

openSUSE Security Update : msmtp (msmtp-1813)

msmtp did not properly handle a '0' character in the domain name of SSL certificates CVE-2009-3942. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update msmtp-1813. The text description of this...

6.4CVSS5.3AI score0.0108EPSS
Exploits0References2
NVD
NVD
added 2009/11/16 7:30 p.m.22 views

CVE-2009-3942

Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the 1 subject's Common Name or 2 Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted...

6.4CVSS6.1AI score0.0108EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2009/11/16 7:30 p.m.21 views

CVE-2009-3942

Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the 1 subject's Common Name or 2 Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted...

6.4CVSS6AI score0.0108EPSS
Exploits0References1
Prion
Prion
added 2009/11/16 7:30 p.m.15 views

Design/Logic Flaw

Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the 1 subject's Common Name or 2 Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted...

6.4CVSS8.9AI score0.05741EPSS
Exploits4References4Affected Software1
Cvelist
Cvelist
added 2009/11/16 7:0 p.m.28 views

CVE-2009-3942

Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the 1 subject's Common Name or 2 Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted...

6.3AI score0.0108EPSS
Exploits0References4
CVE
CVE
added 2009/11/16 7:0 p.m.62 views

CVE-2009-3942

Technical details about CVE-2009-3942 are not publicly available in the provided connected documents. The materials do not specify affected products, versions, root cause, or remediation. Monitor for updates and new advisories.

6.4CVSS6AI score0.0108EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2009/11/16 7:0 p.m.32 views

CVE-2009-3942

Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the 1 subject's Common Name or 2 Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted...

6.4CVSS8.4AI score0.0108EPSS
Exploits0
Rows per page
Query Builder