Fetchmail: >> Fetchmail >> 6.2.0 Security Vulnerabilities
fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-10-27
Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier.
CVSS Score
5.0
EPSS Score
0.064
Published
2005-07-27
Fetchmail 6.2.4 and earlier does not properly allocate memory for long lines, which allows remote attackers to cause a denial of service (crash) via a certain email.
CVSS Score
5.0
EPSS Score
0.013
Published
2003-11-17
Page 2