CVE-2014-2014 in imapsyncinformation

Résumé (Anglaise)

imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing the network.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

17/02/2014

Divulgation

18/04/2014

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
69398	Gilles Lamiral imapsync élévation de privilèges	255	Non défini	Correctif officiel	CVE-2014-2014

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!