CVE-2004-2642

Yeemp 0.9.9 and earlier does not properly encrypt inbound files, which allows remote attackers to spoof the identity of the sender.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 10

NVD 17 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nathaniel Bray ≫ Yeemp Version0.5.1

Nathaniel Bray ≫ Yeemp Version0.6.1

Nathaniel Bray ≫ Yeemp Version0.6.2

Nathaniel Bray ≫ Yeemp Version0.7.1

Nathaniel Bray ≫ Yeemp Version0.7.2

Nathaniel Bray ≫ Yeemp Version0.9.1

Nathaniel Bray ≫ Yeemp Version0.9.2

Nathaniel Bray ≫ Yeemp Version0.9.2pre2

Nathaniel Bray ≫ Yeemp Version0.9.4

Nathaniel Bray ≫ Yeemp Version0.9.6

Nathaniel Bray ≫ Yeemp Version0.9.7

Nathaniel Bray ≫ Yeemp Version0.9.8

Nathaniel Bray ≫ Yeemp Version0.9.9

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.54%	0.716

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:P/I:P/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://deekoo.net/technocracy/yeemp/#advisory

Patch

http://deekoo.net/technocracy/yeemp/changes.html

http://secunia.com/advisories/12795

Patch

Vendor Advisory

http://securitytracker.com/id?1011586

Patch

http://www.osvdb.org/10671

Patch

http://www.securityfocus.com/bid/11353

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/17692

CVE Source (NVD)

CVE Source (JSON)

EUVD

Team-orientierte Vulnerability Management Plattform