Lucene search
HistorySep 11, 2008 - 1:13 a.m.
CVE-2008-3962
cve-2008-3962
ssmtp
email security
memory vulnerability
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.0%
The from_format function in ssmtp.c in ssmtp 2.61 and 2.62, in certain configurations, uses uninitialized memory for the From: field of an e-mail message, which might allow remote attackers to obtain sensitive information (memory contents) in opportunistic circumstances by reading a message.
Affected configurations
Node
ssmtpssmtpMatch2.61
ORssmtpssmtpMatch2.62
| CPE | Name | Operator | Version |
|---|---|---|---|
| ssmtp:ssmtp | ssmtp | eq | 2.61 |
| ssmtp:ssmtp | ssmtp | eq | 2.62 |
Related
openvas
openvas
Fedora Update for ssmtp FEDORA-2008-8069
2009-02-17 00:00:00
Fedora Update for ssmtp FEDORA-2008-8069
2009-02-17 00:00:00
Fedora Update for ssmtp FEDORA-2008-8040
2009-02-17 00:00:00
cvelist
cvelist
CVE-2008-3962
2008-09-10 15:00:00
nvd
nvd
CVE-2008-3962
2008-09-11 01:13:47
nessus
nessus
Fedora 9 : ssmtp-2.61-11.6.fc9.1 (2008-8069)
2008-09-15 00:00:00
Fedora 8 : ssmtp-2.61-11.6.fc8.1 (2008-8040)
2008-09-15 00:00:00
redhatcve
redhatcve
CVE-2008-3962
2019-10-04 20:28:31
seebug
seebug
sSMTP 'from_format()'ćŞĺĺ§ĺĺ
ĺ俥ćŻćłćźćźć´
2008-09-11 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: ssmtp-2.61-11.6.fc8.1
2008-09-14 06:48:21
[SECURITY] Fedora 9 Update: ssmtp-2.61-11.6.fc9.1
2008-09-14 06:49:47
prion
prion
Format string
2008-09-11 01:13:00
debiancve
debiancve
CVE-2008-3962
2008-09-11 01:13:47
ubuntucve
ubuntucve
CVE-2008-3962
2008-09-11 00:00:00
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.0%
Related for CVE-2008-3962