Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2335

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2335
Last Modified 07 Mar 2011 09:24:07
Published 27 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2335

Summary

Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier.

Vulnerable Systems

Application

  • Fetchmail 4.5.1

  • Fetchmail 4.5.2

  • Fetchmail 4.5.3

  • Fetchmail 4.5.4

  • Fetchmail 4.5.5

  • Fetchmail 4.5.6

  • Fetchmail 4.5.7

  • Fetchmail 4.5.8

  • Fetchmail 4.6.0

  • Fetchmail 4.6.1

  • Fetchmail 4.6.2

  • Fetchmail 4.6.3

  • Fetchmail 4.6.4

  • Fetchmail 4.6.5

  • Fetchmail 4.6.6

  • Fetchmail 4.6.7

  • Fetchmail 4.6.8

  • Fetchmail 4.6.9

  • Fetchmail 4.7.0

  • Fetchmail 4.7.1

  • Fetchmail 4.7.2

  • Fetchmail 4.7.3

  • Fetchmail 4.7.4

  • Fetchmail 4.7.5

  • Fetchmail 4.7.6

  • Fetchmail 4.7.7

  • Fetchmail 5.0.0

  • Fetchmail 5.0.1

  • Fetchmail 5.0.2

  • Fetchmail 5.0.3

  • Fetchmail 5.0.4

  • Fetchmail 5.0.5

  • Fetchmail 5.0.6

  • Fetchmail 5.0.7

  • Fetchmail 5.0.8

  • Fetchmail 5.1.0

  • Fetchmail 5.1.4

  • Fetchmail 5.2.0

  • Fetchmail 5.2.1

  • Fetchmail 5.2.3

  • Fetchmail 5.2.4

  • Fetchmail 5.2.7

  • Fetchmail 5.2.8

  • Fetchmail 5.3.0

  • Fetchmail 5.3.1

  • Fetchmail 5.3.3

  • Fetchmail 5.3.8

  • Fetchmail 5.4.0

  • Fetchmail 5.4.3

  • Fetchmail 5.4.4

  • Fetchmail 5.4.5

  • Fetchmail 5.5.0

  • Fetchmail 5.5.2

  • Fetchmail 5.5.3

  • Fetchmail 5.5.5

  • Fetchmail 5.5.6

  • Fetchmail 5.6.0

  • Fetchmail 5.7.0

  • Fetchmail 5.7.2

  • Fetchmail 5.7.4

  • Fetchmail 5.8

  • Fetchmail 5.8.1

  • Fetchmail 5.8.11

  • Fetchmail 5.8.13

  • Fetchmail 5.8.14

  • Fetchmail 5.8.17

  • Fetchmail 5.8.2

  • Fetchmail 5.8.3

  • Fetchmail 5.8.4

  • Fetchmail 5.8.5

  • Fetchmail 5.8.6

  • Fetchmail 5.9.0

  • Fetchmail 5.9.10

  • Fetchmail 5.9.11

  • Fetchmail 5.9.13

  • Fetchmail 5.9.4

  • Fetchmail 5.9.5

  • Fetchmail 5.9.8

  • Fetchmail 6.0.0

  • Fetchmail 6.1.0

  • Fetchmail 6.1.3

  • Fetchmail 6.2.0

  • Fetchmail 6.2.1

  • Fetchmail 6.2.2

  • Fetchmail 6.2.3

  • Fetchmail 6.2.4

  • Fetchmail 6.2.5

  • Fetchmail 6.2.5.1

  • Fetchmail 6.3.4


References

CERT - TA06-214A

BID - 14349

FEDORA - FEDORA-2005-614

CONFIRM - http://fetchmail.berlios.de/fetchmail-SA-2005-01.txt

CONFIRM - http://developer.berlios.de/project/shownotes.php?release_id=6617

VUPEN - ADV-2006-3101

VUPEN - ADV-2005-1171

BID - 19289

BUGTRAQ - 20060801 DMA[2006-0801a] - 'Apple OSX fetchmail buffer overflow'

BUGTRAQ - 20060526 rPSA-2006-0084-1 fetchmail

REDHAT - RHSA-2005:640

MISC - http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00104.html

FEDORA - FEDORA-2005-613

OSVDB - 18174

SUSE - SUSE-SR:2005:018

DEBIAN - DSA-774

SECUNIA - 21253

SECUNIA - 16176

APPLE - APPLE-SA-2006-08-01

Related Patches

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (PPC)

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (Intel)


Last Updated: 27 May 2016 10:40:28