Oval Definition:	oval:org.mitre.oval:tst:33046
Comment: fetchmail is earlier than 0:6.2.0-3.el3.3 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14633 State: oval:org.mitre.oval:ste:10383 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9659 V fetchmail before 6.3.1 and before 6.2.5.5, when configured for multidrop mode, allows remote attackers to cause a denial of service (application crash) by sending messages without headers from upstream mail servers. 2013-04-29 oval:org.mitre.oval:def:10566 V fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks. 2013-04-29
BACK