CVE-2012-3482 (GCVE-0-2012-3482)

Vulnerability from cvelistv5 – Published: 2012-12-21 02:00 – Updated: 2024-08-06 20:05
VLAI?
Summary
Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T20:05:12.577Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[oss-security] 20120813 Re: CVE ID request for fetchmail segfault in NTLM protocol exchange",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://seclists.org/oss-sec/2012/q3/232"
          },
          {
            "name": "[oss-security] 20120813 CVE ID request for fetchmail segfault in NTLM protocol exchange",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://seclists.org/oss-sec/2012/q3/230"
          },
          {
            "name": "54987",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/54987"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail"
          },
          {
            "name": "FEDORA-2012-14451",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html"
          },
          {
            "name": "FEDORA-2012-14462",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.fetchmail.info/fetchmail-SA-2012-02.txt"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-08-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2013-04-05T09:00:00",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "[oss-security] 20120813 Re: CVE ID request for fetchmail segfault in NTLM protocol exchange",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://seclists.org/oss-sec/2012/q3/232"
        },
        {
          "name": "[oss-security] 20120813 CVE ID request for fetchmail segfault in NTLM protocol exchange",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://seclists.org/oss-sec/2012/q3/230"
        },
        {
          "name": "54987",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/54987"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail"
        },
        {
          "name": "FEDORA-2012-14451",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html"
        },
        {
          "name": "FEDORA-2012-14462",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.fetchmail.info/fetchmail-SA-2012-02.txt"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2012-3482",
    "datePublished": "2012-12-21T02:00:00",
    "dateReserved": "2012-06-14T00:00:00",
    "dateUpdated": "2024-08-06T20:05:12.577Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.0.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF18219F-0406-4D46-90DE-EA2A17C8EFF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87B56DFD-BDA9-4D8B-BE54-BF59B762D574\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33EA0CA8-468F-4A94-8DA3-5D820AB65973\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA21C847-57ED-4E7D-9366-6038467D9080\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0450BD04-15D2-4122-A210-6225B89BDA7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"18428805-AEB2-4BA4-9762-906B59CE74D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AFCCBB15-DFFE-4A57-A029-E57707D15E04\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0427B5C8-265C-47C3-9BAB-B2A0EAA1DEE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.2.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89A4B962-BE5B-471C-83EF-674525C5AE83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7166ECCB-54FB-44EA-BA80-4D2AAF494AF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B309C89-99E2-4F0B-976C-95E44A45ADC5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3DE7EE7-F627-4955-8D95-1F00F1F85C7D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.3.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D549098D-FE16-4BCB-91C4-D71A8C8D2E9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"57BFA165-6E2E-49AF-9E2D-3D8923CF36C7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5C67DFF-A1BE-4486-A11F-CD3729927220\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1D365E6E-8777-4084-BEC8-7CBF4997D976\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20C4FF28-0DBA-4995-8252-2D62FF896BC4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F80C6B9B-AFCE-46A1-8DEF-51C1B526EB18\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF667DB5-F41E-4E73-A01F-4EC3F60BAD0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D2B144FA-A901-4CDF-AC3D-7F5E820B7A4B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.5.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96774635-9A12-4DAB-BCF6-2D678F244CE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EFD2EE7A-36CB-4A26-8EEB-DACA2864D921\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C3898EBC-75A9-4DDD-A0AF-2CDEC72DAE4F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4267DCE8-985C-416D-A6B7-536585E5A573\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"50E63EDF-FF0A-447C-A3FC-7BA2414C15CA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61DDD4A1-6185-41B6-A715-4C70F0AA2631\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B10A7E3C-07CD-48A6-9075-5314B4E1EEAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"319955A4-27A8-46FF-ACE7-97E6DF27B2DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"925CF3DD-682B-40E6-900C-23F784CD9239\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16366780-611E-4217-A614-EBA01421D148\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43AEA36F-E730-4305-9CB6-738A7152F02E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B9536BA-6334-4957-9632-6D64365B88AB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F52FA32B-8048-4FD7-9D20-20DC5E52098B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FA92DF1-3AAD-46AC-A9E4-E9386C977818\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"837D66DB-F9CB-41F1-A091-BCFBAC2F45B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74D12B67-6E66-419A-A28F-6306402931EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.8.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A71FCBED-B25D-48E3-916C-FBA9E0DE8D12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A17995E-DCAF-465A-8ABD-F1EA0D538784\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93D03D78-C56E-4189-97FC-916C918EDFEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19A66C77-041F-4A12-8A36-233A6B50641C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C945059C-EF39-486D-A804-FBB8704AB927\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1258CA65-FBC1-4848-A9E5-A8F5E5D6FBD5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A91C6418-41F0-46EB-ACFC-FCE907F5AA87\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:5.9.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C020534-7596-496C-B9B0-739F58F6F4EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A77D40C-6FF5-42BD-9EFB-B532824D7606\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F04C6A76-2718-4DBA-8972-A3EECDDB1A17\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38ACD96E-5582-4ED0-BBB1-C891094D8217\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"264386DA-747F-492C-B660-D49BE9DB7139\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC4066AC-BE10-4189-86F6-BF94443738DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C25A146-50D5-4BA2-ABA2-20BF8784D7DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"72E76256-997F-4229-9B03-7BC3074F359D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A717C50-2C5A-4CD1-B2E6-8CDF450940CE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61F908FF-9986-4F71-B0B6-D6A86555EF56\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0C1F99C-A246-40D3-B84A-5D11FF24AC1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"028F7F83-AF15-443B-A7DB-4E695E62EAFB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.5.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B418C3CE-E6E6-401D-AD83-5BB181009A7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre4:*:*:*:*:*:*\", \"matchCriteriaId\": \"8BF06FD2-0A4C-4557-B8EF-F0F021179498\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre8:*:*:*:*:*:*\", \"matchCriteriaId\": \"38C949C2-07A0-4FE4-8FBF-86215CB999CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre9:*:*:*:*:*:*\", \"matchCriteriaId\": \"88B23630-79DD-4B69-BB01-286193BA562E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc10:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FE21564-68C0-4765-BA40-9D3046C4CB14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"208102ED-6F22-44C5-BAF1-FD85EACF208F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1CF7767-EB24-44E2-8E59-B4DBC99AFD23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc5:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF3D6D4C-5FD8-4EE1-A34A-99D397F09E85\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc7:*:*:*:*:*:*\", \"matchCriteriaId\": \"D63D88C1-B201-4D48-9659-5802DC4FD3EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc8:*:*:*:*:*:*\", \"matchCriteriaId\": \"16463B23-E884-467E-9F63-6B57EED39856\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc9:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F2C03AF-666D-4AF6-BC69-F8B081EB41AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"84F90AFA-4B13-46A0-89D7-4065300C94C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DAD0F05-8B55-43ED-89D5-61A19F41EDFF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99053698-7F8B-4E71-8647-1A8B0DF7CEB1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9314F22D-22A8-4374-A2BF-3C64CF1F69BC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"816E9640-A932-4E2F-9793-689F80D2AA89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D09BB43-6CBA-499B-91D1-BA256A65E40D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ABE76611-08CE-4D85-B57A-021909835A81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"B98AFEDF-2BAB-4588-94E0-35AEA5F1B514\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"4E8BAB5B-4DBC-4D05-B5E2-591573BC05FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"02F6E729-A2F2-42AC-A941-F57A0A4E84A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"4143D519-4B49-4E71-8686-FC6A095F0999\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc5:*:*:*:*:*:*\", \"matchCriteriaId\": \"387ADB82-4FAD-44DA-ABF2-2F4645C4F1E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CED4FBCB-B6DF-429D-871D-2A9F7F59E63B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"237F86BD-82CD-4A37-BF64-F103B1304F0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"667847D9-58DD-4693-B544-593AC6D7746D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.9:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"12BA2E29-5547-45F5-BC46-1A7B4A222055\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C44EA07A-D8A9-4E43-AE2D-B9E41944CB07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9882EBF-72D0-4C4F-99BA-929418B5D86B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE474E7E-EEE8-45E4-A995-A437CE7C08CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F96F2F2-B6CC-4138-8F9C-4CB906EDACDD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"22D580D8-FE6D-40E9-88A5-751A9C8CBAA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C7E909A-F8F7-4FB1-8659-41A47C9B7C5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FDBC29B9-EC76-4F2C-BD00-A57C0D4B99EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C8896BE-EF89-4F2C-9356-96745005E3AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39E249FA-4A13-4945-A632-0A8D24CE594A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6126F184-8470-49B7-A801-F671DEF24247\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fetchmail:fetchmail:6.3.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66992896-2958-47CA-A70A-A8B0B9B5FBA6\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read.\"}, {\"lang\": \"es\", \"value\": \"Fetchmail v5.0.8 hasta v6.3.21, cuando se utiliza la autenticaci\\u00f3n NTLM en modo de depuraci\\u00f3n, permite a servidores remotos NTLM (1) causar una denegaci\\u00f3n de servicio (ca\\u00edda y retraso en la entrega de correo entrante) a trav\\u00e9s de una respuesta NTLM manipulada que desencadena una lectura fuera de limites en el decodificador base64, o (2) obtener informaci\\u00f3n confidencial de la memoria a trav\\u00e9s de un mensaje tipo NTLM 2 con una estructura Target Name modificada, lo que desencadena una lectura fuera de limites.\"}]",
      "id": "CVE-2012-3482",
      "lastModified": "2024-11-21T01:40:58.093",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:N/A:P\", \"baseScore\": 5.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2012-12-21T05:46:16.167",
      "references": "[{\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://seclists.org/oss-sec/2012/q3/230\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://seclists.org/oss-sec/2012/q3/232\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.fetchmail.info/fetchmail-SA-2012-02.txt\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/54987\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://seclists.org/oss-sec/2012/q3/230\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://seclists.org/oss-sec/2012/q3/232\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.fetchmail.info/fetchmail-SA-2012-02.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/54987\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-3482\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-12-21T05:46:16.167\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read.\"},{\"lang\":\"es\",\"value\":\"Fetchmail v5.0.8 hasta v6.3.21, cuando se utiliza la autenticaci\u00f3n NTLM en modo de depuraci\u00f3n, permite a servidores remotos NTLM (1) causar una denegaci\u00f3n de servicio (ca\u00edda y retraso en la entrega de correo entrante) a trav\u00e9s de una respuesta NTLM manipulada que desencadena una lectura fuera de limites en el decodificador base64, o (2) obtener informaci\u00f3n confidencial de la memoria a trav\u00e9s de un mensaje tipo NTLM 2 con una estructura Target Name modificada, lo que desencadena una lectura fuera de limites.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:P\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF18219F-0406-4D46-90DE-EA2A17C8EFF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87B56DFD-BDA9-4D8B-BE54-BF59B762D574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33EA0CA8-468F-4A94-8DA3-5D820AB65973\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA21C847-57ED-4E7D-9366-6038467D9080\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0450BD04-15D2-4122-A210-6225B89BDA7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18428805-AEB2-4BA4-9762-906B59CE74D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFCCBB15-DFFE-4A57-A029-E57707D15E04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0427B5C8-265C-47C3-9BAB-B2A0EAA1DEE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89A4B962-BE5B-471C-83EF-674525C5AE83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7166ECCB-54FB-44EA-BA80-4D2AAF494AF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B309C89-99E2-4F0B-976C-95E44A45ADC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3DE7EE7-F627-4955-8D95-1F00F1F85C7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D549098D-FE16-4BCB-91C4-D71A8C8D2E9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57BFA165-6E2E-49AF-9E2D-3D8923CF36C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5C67DFF-A1BE-4486-A11F-CD3729927220\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D365E6E-8777-4084-BEC8-7CBF4997D976\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20C4FF28-0DBA-4995-8252-2D62FF896BC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F80C6B9B-AFCE-46A1-8DEF-51C1B526EB18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF667DB5-F41E-4E73-A01F-4EC3F60BAD0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2B144FA-A901-4CDF-AC3D-7F5E820B7A4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96774635-9A12-4DAB-BCF6-2D678F244CE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFD2EE7A-36CB-4A26-8EEB-DACA2864D921\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3898EBC-75A9-4DDD-A0AF-2CDEC72DAE4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4267DCE8-985C-416D-A6B7-536585E5A573\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50E63EDF-FF0A-447C-A3FC-7BA2414C15CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61DDD4A1-6185-41B6-A715-4C70F0AA2631\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B10A7E3C-07CD-48A6-9075-5314B4E1EEAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"319955A4-27A8-46FF-ACE7-97E6DF27B2DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"925CF3DD-682B-40E6-900C-23F784CD9239\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16366780-611E-4217-A614-EBA01421D148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43AEA36F-E730-4305-9CB6-738A7152F02E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B9536BA-6334-4957-9632-6D64365B88AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F52FA32B-8048-4FD7-9D20-20DC5E52098B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA92DF1-3AAD-46AC-A9E4-E9386C977818\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"837D66DB-F9CB-41F1-A091-BCFBAC2F45B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74D12B67-6E66-419A-A28F-6306402931EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A71FCBED-B25D-48E3-916C-FBA9E0DE8D12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A17995E-DCAF-465A-8ABD-F1EA0D538784\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93D03D78-C56E-4189-97FC-916C918EDFEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19A66C77-041F-4A12-8A36-233A6B50641C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C945059C-EF39-486D-A804-FBB8704AB927\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1258CA65-FBC1-4848-A9E5-A8F5E5D6FBD5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A91C6418-41F0-46EB-ACFC-FCE907F5AA87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C020534-7596-496C-B9B0-739F58F6F4EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A77D40C-6FF5-42BD-9EFB-B532824D7606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F04C6A76-2718-4DBA-8972-A3EECDDB1A17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38ACD96E-5582-4ED0-BBB1-C891094D8217\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"264386DA-747F-492C-B660-D49BE9DB7139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC4066AC-BE10-4189-86F6-BF94443738DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C25A146-50D5-4BA2-ABA2-20BF8784D7DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72E76256-997F-4229-9B03-7BC3074F359D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A717C50-2C5A-4CD1-B2E6-8CDF450940CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61F908FF-9986-4F71-B0B6-D6A86555EF56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0C1F99C-A246-40D3-B84A-5D11FF24AC1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"028F7F83-AF15-443B-A7DB-4E695E62EAFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B418C3CE-E6E6-401D-AD83-5BB181009A7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre4:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BF06FD2-0A4C-4557-B8EF-F0F021179498\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre8:*:*:*:*:*:*\",\"matchCriteriaId\":\"38C949C2-07A0-4FE4-8FBF-86215CB999CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre9:*:*:*:*:*:*\",\"matchCriteriaId\":\"88B23630-79DD-4B69-BB01-286193BA562E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc10:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FE21564-68C0-4765-BA40-9D3046C4CB14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"208102ED-6F22-44C5-BAF1-FD85EACF208F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1CF7767-EB24-44E2-8E59-B4DBC99AFD23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF3D6D4C-5FD8-4EE1-A34A-99D397F09E85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"D63D88C1-B201-4D48-9659-5802DC4FD3EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"16463B23-E884-467E-9F63-6B57EED39856\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc9:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F2C03AF-666D-4AF6-BC69-F8B081EB41AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84F90AFA-4B13-46A0-89D7-4065300C94C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAD0F05-8B55-43ED-89D5-61A19F41EDFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99053698-7F8B-4E71-8647-1A8B0DF7CEB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9314F22D-22A8-4374-A2BF-3C64CF1F69BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"816E9640-A932-4E2F-9793-689F80D2AA89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D09BB43-6CBA-499B-91D1-BA256A65E40D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABE76611-08CE-4D85-B57A-021909835A81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B98AFEDF-2BAB-4588-94E0-35AEA5F1B514\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E8BAB5B-4DBC-4D05-B5E2-591573BC05FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"02F6E729-A2F2-42AC-A941-F57A0A4E84A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"4143D519-4B49-4E71-8686-FC6A095F0999\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"387ADB82-4FAD-44DA-ABF2-2F4645C4F1E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CED4FBCB-B6DF-429D-871D-2A9F7F59E63B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"237F86BD-82CD-4A37-BF64-F103B1304F0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"667847D9-58DD-4693-B544-593AC6D7746D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.9:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"12BA2E29-5547-45F5-BC46-1A7B4A222055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C44EA07A-D8A9-4E43-AE2D-B9E41944CB07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9882EBF-72D0-4C4F-99BA-929418B5D86B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE474E7E-EEE8-45E4-A995-A437CE7C08CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F96F2F2-B6CC-4138-8F9C-4CB906EDACDD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22D580D8-FE6D-40E9-88A5-751A9C8CBAA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C7E909A-F8F7-4FB1-8659-41A47C9B7C5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDBC29B9-EC76-4F2C-BD00-A57C0D4B99EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C8896BE-EF89-4F2C-9356-96745005E3AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39E249FA-4A13-4945-A632-0A8D24CE594A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6126F184-8470-49B7-A801-F671DEF24247\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66992896-2958-47CA-A70A-A8B0B9B5FBA6\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://seclists.org/oss-sec/2012/q3/230\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://seclists.org/oss-sec/2012/q3/232\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.fetchmail.info/fetchmail-SA-2012-02.txt\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/54987\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088836.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088871.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/oss-sec/2012/q3/230\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/oss-sec/2012/q3/232\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.fetchmail.info/fetchmail-SA-2012-02.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/54987\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.