Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2016-0772

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allo...

6.5CVSS6.9AI score0.14524EPSS
Exploits3References2
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.63 views

K01955184: Python smtplib library vulnerability CVE-2016-0772

Security Advisory Description The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the...

6.5CVSS7.3AI score0.14524EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2023/02/15 5:9 a.m.3 views

SUSE CVE-2016-0772

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.5CVSS8.9AI score0.14524EPSS
Exploits3References28
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.42 views

EulerOS Virtualization 3.0.1.0 : python (EulerOS-SA-2019-1434)

According to the versions of the python packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that Python's smtplib library did not return an exception when StartTLS failed to be established in the SMTP.starttl...

10CVSS7.5AI score0.95707EPSS
Exploits21References17
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.51 views

EulerOS 2.0 SP1 : python (EulerOS-SA-2016-1036)

According to the versions of the python packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was discovered that the Python CGIHandler class did not properly protect against the HTTPPROXY variable name clash in a CGI context. A remote...

6.5CVSS7.2AI score0.14524EPSS
Exploits6References4
Cloud Foundry
Cloud Foundry
added 2016/12/14 12:0 a.m.70 views

USN-3134-1: Python vulnerabilities | Cloud Foundry

USN-3134-1: Python vulnerabilities Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description It was discovered that the smtplib library in Python did not return an error when StartTLS fails. A remote attacker could possibly use this to expose sensitive information...

10CVSS7.6AI score0.2548EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2016/11/23 12:0 a.m.87 views

Ubuntu 14.04 LTS / 16.04 LTS : Python vulnerabilities (USN-3134-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3134-1 advisory. It was discovered that the smtplib library in Python did not return an error when StartTLS fails. A remote attacker could possibly use this t...

10CVSS7.8AI score0.2548EPSS
Exploits7References5
OpenVAS
OpenVAS
added 2016/09/12 12:0 a.m.80 views

CPython Man in Middle Attack and Code Execution Vulnerabilities - Windows

CPython is prone to a man in middle attack and an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS8.6AI score0.2548EPSS
Exploits4References4
OSV
OSV
added 2016/09/02 2:59 p.m.8 views

CVE-2016-0772

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.5CVSS7.7AI score
Exploits0References18
Cvelist
Cvelist
added 2016/09/02 2:0 p.m.24 views

CVE-2016-0772

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.6AI score0.14524EPSS
Exploits3References18
EUVD
EUVD
added 2016/09/02 2:0 p.m.2 views

EUVD-2016-0788

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.5CVSS7AI score0.14524EPSS
Exploits3References28
OSV
OSV
added 2016/09/02 2:0 p.m.8 views

PSF-2016-3 smtplib TLS stripping

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.5CVSS7.7AI score0.14524EPSS
Exploits3References2
CVE
CVE
added 2016/09/02 2:0 p.m.245 views

CVE-2016-0772

CVE-2016-0772 affects CPython’s smtplib where StartTLS failure is not surfaced as an error, potentially enabling a man‑in‑the‑middle by blocking StartTLS. Public advisories and Debian/Ubuntu updates confirm the issue and provide fixes: e.g., Debian/DLA entries fix python3.x (and Python 2.7 series...

6.5CVSS6.5AI score0.14524EPSS
Exploits3References18Affected Software1
UbuntuCve
UbuntuCve
added 2016/09/02 12:0 a.m.41 views

CVE-2016-0772

The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block...

6.5CVSS6.8AI score0.14524EPSS
Exploits3References3
RedHat Linux
RedHat Linux
added 2016/08/18 8:7 p.m.119 views

Moderate: Red Hat Security Advisory: python27-python security update

An update for python27-python is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

6.5CVSS6.5AI score0.14524EPSS
Exploits6References4
Rows per page
Query Builder