CVE-2012-3482 in Fetchmailinfo

Zusammenfassung

von MITRE

Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

14.06.2012

Veröffentlichung

21.12.2012

Moderieren

akzeptiert

Eintrag

VDB-63232

CPE

bereit

CWE

CWE-119 (bestätigt)

CVSS

5.8 (NVD)

EPSS

0.00721

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3482
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3482
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3482/

◂ Zurück Übersicht Weiter ▸

Do you know our Splunk app?

Download it now for free!