CVE-2008-2711

EPSS 3.32%
Veröffentlicht 16.06.2008 21:41:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

fetchmail 6.3.8 and earlier, when running in -v -v (aka verbose) mode, allows remote attackers to cause a denial of service (crash and persistent mail failure) via a malformed mail message with long headers, which triggers an erroneous dereference when using vsnprintf to format log messages.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 28

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Fetchmail ≫ Fetchmail Version <= 6.3.8

Fetchmail ≫ Fetchmail Version4.5.1

Fetchmail ≫ Fetchmail Version4.5.2

Fetchmail ≫ Fetchmail Version4.5.3

Fetchmail ≫ Fetchmail Version4.5.4

Fetchmail ≫ Fetchmail Version4.5.5

Fetchmail ≫ Fetchmail Version4.5.6

Fetchmail ≫ Fetchmail Version4.5.7

Fetchmail ≫ Fetchmail Version4.5.8

Fetchmail ≫ Fetchmail Version4.6.0

Fetchmail ≫ Fetchmail Version4.6.1

Fetchmail ≫ Fetchmail Version4.6.2

Fetchmail ≫ Fetchmail Version4.6.3

Fetchmail ≫ Fetchmail Version4.6.4

Fetchmail ≫ Fetchmail Version4.6.5

Fetchmail ≫ Fetchmail Version4.6.6

Fetchmail ≫ Fetchmail Version4.6.7

Fetchmail ≫ Fetchmail Version4.6.8

Fetchmail ≫ Fetchmail Version4.6.9

Fetchmail ≫ Fetchmail Version4.7.0

Fetchmail ≫ Fetchmail Version4.7.1

Fetchmail ≫ Fetchmail Version4.7.2

Fetchmail ≫ Fetchmail Version4.7.3

Fetchmail ≫ Fetchmail Version4.7.4

Fetchmail ≫ Fetchmail Version4.7.5

Fetchmail ≫ Fetchmail Version4.7.6

Fetchmail ≫ Fetchmail Version4.7.7

Fetchmail ≫ Fetchmail Version5.0.0

Fetchmail ≫ Fetchmail Version5.0.1

Fetchmail ≫ Fetchmail Version5.0.2

Fetchmail ≫ Fetchmail Version5.0.3

Fetchmail ≫ Fetchmail Version5.0.4

Fetchmail ≫ Fetchmail Version5.0.5

Fetchmail ≫ Fetchmail Version5.0.6

Fetchmail ≫ Fetchmail Version5.0.7

Fetchmail ≫ Fetchmail Version5.0.8

Fetchmail ≫ Fetchmail Version5.1.0

Fetchmail ≫ Fetchmail Version5.1.4

Fetchmail ≫ Fetchmail Version5.2.0

Fetchmail ≫ Fetchmail Version5.2.1

Fetchmail ≫ Fetchmail Version5.2.3

Fetchmail ≫ Fetchmail Version5.2.4

Fetchmail ≫ Fetchmail Version5.2.7

Fetchmail ≫ Fetchmail Version5.2.8

Fetchmail ≫ Fetchmail Version5.3.0

Fetchmail ≫ Fetchmail Version5.3.1

Fetchmail ≫ Fetchmail Version5.3.3

Fetchmail ≫ Fetchmail Version5.3.8

Fetchmail ≫ Fetchmail Version5.4.0

Fetchmail ≫ Fetchmail Version5.4.3

Fetchmail ≫ Fetchmail Version5.4.4

Fetchmail ≫ Fetchmail Version5.4.5

Fetchmail ≫ Fetchmail Version5.5.0

Fetchmail ≫ Fetchmail Version5.5.2

Fetchmail ≫ Fetchmail Version5.5.3

Fetchmail ≫ Fetchmail Version5.5.5

Fetchmail ≫ Fetchmail Version5.5.6

Fetchmail ≫ Fetchmail Version5.6.0

Fetchmail ≫ Fetchmail Version5.7.0

Fetchmail ≫ Fetchmail Version5.7.2

Fetchmail ≫ Fetchmail Version5.7.4

Fetchmail ≫ Fetchmail Version5.8

Fetchmail ≫ Fetchmail Version5.8.1

Fetchmail ≫ Fetchmail Version5.8.2

Fetchmail ≫ Fetchmail Version5.8.3

Fetchmail ≫ Fetchmail Version5.8.4

Fetchmail ≫ Fetchmail Version5.8.5

Fetchmail ≫ Fetchmail Version5.8.6

Fetchmail ≫ Fetchmail Version5.8.11

Fetchmail ≫ Fetchmail Version5.8.13

Fetchmail ≫ Fetchmail Version5.8.14

Fetchmail ≫ Fetchmail Version5.8.17

Fetchmail ≫ Fetchmail Version5.9.0

Fetchmail ≫ Fetchmail Version5.9.4

Fetchmail ≫ Fetchmail Version5.9.5

Fetchmail ≫ Fetchmail Version5.9.8

Fetchmail ≫ Fetchmail Version5.9.10

Fetchmail ≫ Fetchmail Version5.9.11

Fetchmail ≫ Fetchmail Version5.9.13

Fetchmail ≫ Fetchmail Version6.0.0

Fetchmail ≫ Fetchmail Version6.1.0

Fetchmail ≫ Fetchmail Version6.1.3

Fetchmail ≫ Fetchmail Version6.2.0

Fetchmail ≫ Fetchmail Version6.2.1

Fetchmail ≫ Fetchmail Version6.2.2

Fetchmail ≫ Fetchmail Version6.2.3

Fetchmail ≫ Fetchmail Version6.2.4

Fetchmail ≫ Fetchmail Version6.2.5

Fetchmail ≫ Fetchmail Version6.2.5.1

Fetchmail ≫ Fetchmail Version6.2.5.2

Fetchmail ≫ Fetchmail Version6.2.5.4

Fetchmail ≫ Fetchmail Version6.2.6 Updatepre4

Fetchmail ≫ Fetchmail Version6.2.6 Updatepre8

Fetchmail ≫ Fetchmail Version6.2.6 Updatepre9

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc10

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc3

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc4

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc5

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc7

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc8

Fetchmail ≫ Fetchmail Version6.2.9 Updaterc9

Fetchmail ≫ Fetchmail Version6.3.0

Fetchmail ≫ Fetchmail Version6.3.1

Fetchmail ≫ Fetchmail Version6.3.2

Fetchmail ≫ Fetchmail Version6.3.3

Fetchmail ≫ Fetchmail Version6.3.4

Fetchmail ≫ Fetchmail Version6.3.5

Fetchmail ≫ Fetchmail Version6.3.6

Fetchmail ≫ Fetchmail Version6.3.6 Updaterc1

Fetchmail ≫ Fetchmail Version6.3.6 Updaterc2

Fetchmail ≫ Fetchmail Version6.3.6 Updaterc3

Fetchmail ≫ Fetchmail Version6.3.6 Updaterc4

Fetchmail ≫ Fetchmail Version6.3.6 Updaterc5

Fetchmail ≫ Fetchmail Version6.3.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.32%	0.861

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

http://secunia.com/advisories/33937

Vendor Advisory

http://support.apple.com/kb/HT3438

http://www.vupen.com/english/advisories/2009/0422

http://secunia.com/advisories/30742

Vendor Advisory

http://secunia.com/advisories/30895

Vendor Advisory

http://secunia.com/advisories/31262

Vendor Advisory

http://secunia.com/advisories/31287