CVE-2011-1947 in fetchmailinfo

Summary

fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a (1) STARTTLS or (2) STLS request, which allows remote servers to cause a denial of service (application hang) by acknowledging the request but not sending additional packets.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/09/2011

Disclosure

06/02/2011

Moderation

VulDB entry created

Entries

1: VDB-57563

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

5.3

EPSS

0.02444

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1947
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1947
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1947/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!