Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4565

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4565
Last Modified 07 Mar 2011 09:58:47
Published 27 Aug 2007 09:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4565

Summary

sink.c in fetchmail before 6.3.9 allows context-dependent attackers to cause a denial of service (NULL dereference and application crash) by refusing certain warning messages that are sent over SMTP.

Vulnerable Systems

Application

  • Fetchmail 4.5.1

  • Fetchmail 4.5.2

  • Fetchmail 4.5.3

  • Fetchmail 4.5.4

  • Fetchmail 4.5.5

  • Fetchmail 4.5.6

  • Fetchmail 4.5.7

  • Fetchmail 4.5.8

  • Fetchmail 4.6.0

  • Fetchmail 4.6.1

  • Fetchmail 4.6.2

  • Fetchmail 4.6.3

  • Fetchmail 4.6.4

  • Fetchmail 4.6.5

  • Fetchmail 4.6.6

  • Fetchmail 4.6.7

  • Fetchmail 4.6.8

  • Fetchmail 4.6.9

  • Fetchmail 4.7.0

  • Fetchmail 4.7.1

  • Fetchmail 4.7.2

  • Fetchmail 4.7.3

  • Fetchmail 4.7.4

  • Fetchmail 4.7.5

  • Fetchmail 4.7.6

  • Fetchmail 4.7.7

  • Fetchmail 5.0.0

  • Fetchmail 5.0.1

  • Fetchmail 5.0.2

  • Fetchmail 5.0.3

  • Fetchmail 5.0.4

  • Fetchmail 5.0.5

  • Fetchmail 5.0.6

  • Fetchmail 5.0.7

  • Fetchmail 5.0.8

  • Fetchmail 5.1.0

  • Fetchmail 5.1.4

  • Fetchmail 5.2.0

  • Fetchmail 5.2.1

  • Fetchmail 5.2.3

  • Fetchmail 5.2.4

  • Fetchmail 5.2.7

  • Fetchmail 5.2.8

  • Fetchmail 5.3.0

  • Fetchmail 5.3.1

  • Fetchmail 5.3.3

  • Fetchmail 5.3.8

  • Fetchmail 5.4.0

  • Fetchmail 5.4.3

  • Fetchmail 5.4.4

  • Fetchmail 5.4.5

  • Fetchmail 5.5.0

  • Fetchmail 5.5.2

  • Fetchmail 5.5.3

  • Fetchmail 5.5.5

  • Fetchmail 5.5.6

  • Fetchmail 5.6.0

  • Fetchmail 5.7.0

  • Fetchmail 5.7.2

  • Fetchmail 5.7.4

  • Fetchmail 5.8

  • Fetchmail 5.8.1

  • Fetchmail 5.8.11

  • Fetchmail 5.8.13

  • Fetchmail 5.8.14

  • Fetchmail 5.8.17

  • Fetchmail 5.8.2

  • Fetchmail 5.8.3

  • Fetchmail 5.8.4

  • Fetchmail 5.8.5

  • Fetchmail 5.8.6

  • Fetchmail 5.9.0

  • Fetchmail 5.9.10

  • Fetchmail 5.9.11

  • Fetchmail 5.9.13

  • Fetchmail 5.9.4

  • Fetchmail 5.9.5

  • Fetchmail 5.9.8

  • Fetchmail 6.0.0

  • Fetchmail 6.1.0

  • Fetchmail 6.1.3

  • Fetchmail 6.2.0

  • Fetchmail 6.2.1

  • Fetchmail 6.2.2

  • Fetchmail 6.2.3

  • Fetchmail 6.2.4

  • Fetchmail 6.2.5

  • Fetchmail 6.2.5.1

  • Fetchmail 6.2.5.2

  • Fetchmail 6.2.5.4

  • Fetchmail 6.2.6

  • Fetchmail 6.2.9

  • Fetchmail 6.3.0

  • Fetchmail 6.3.1

  • Fetchmail 6.3.2

  • Fetchmail 6.3.3

  • Fetchmail 6.3.4

  • Fetchmail 6.3.5

  • Fetchmail 6.3.6

  • Fetchmail 6.3.7

  • Fetchmail 6.3.8

  • Fetchmail 6.3.9


References

CONFIRM - http://mknod.org/svn/fetchmail/branches/BRANCH_6-3/fetchmail-SA-2007-02.txt

CONFIRM - https://issues.rpath.com/browse/RPL-1690

XF - fetchmail-warning-dos(36385)

VUPEN - ADV-2009-0422

VUPEN - ADV-2007-3032

UBUNTU - USN-520-1

TRUSTIX - 2007-0028

SECTRACK - 1018627

BID - 25495

BUGTRAQ - 20080617 fetchmail security announcement fetchmail-SA-2007-02 (CVE-2007-4565)

BUGTRAQ - 20070907 FLEA-2007-0053-1 fetchmail

MANDRIVA - MDKSA-2007:179

DEBIAN - DSA-1377

CONFIRM - http://support.apple.com/kb/HT3438

SREASON - 3074

SECUNIA - 33937

SECUNIA - 27399

OSVDB - 45833

SUSE - SUSE-SR:2007:022

APPLE - APPLE-SA-2009-02-12

Related Patches

Apple 2009-02-12 Security Update 2009-001 Server (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 Server (Tiger Intel)

Apple 2009-02-12 Security Update 2009-001 (Tiger Intel)

Red Hat 2009:1427-01 RHSA Moderate: fetchmail security update for RHEL 5 x86

Novell SUSE 2007:4462 fetchmail security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:45:54