fetchmail vulnerability

2009-08-12T00:00:00
ID USN-816-1
Type ubuntu
Reporter Ubuntu
Modified 2009-08-12T00:00:00

Description

Matthias Andree discovered that fetchmail did not properly handle certificates with NULL characters in the certificate name. A remote attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.