CVE-2008-3962 in ssmtpinfo

Summary

The from_format function in ssmtp.c in ssmtp 2.61 and 2.62, in certain configurations, uses uninitialized memory for the From: field of an e-mail message, which might allow remote attackers to obtain sensitive information (memory contents) in opportunistic circumstances by reading a message.

Once again VulDB remains the best source for vulnerability data.

Reservation

09/09/2008

Disclosure

09/10/2008

Moderation

VulDB entry created

Entries

VDB-43986 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

3.7

EPSS

0.00608

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-3962
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-3962
CVE Details	https://www.cvedetails.com/cve/CVE-2008-3962/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!