CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
92.5%
Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | fetchmail | < 6.2.5-16 | fetchmail_6.2.5-16_all.deb |
Debian | 11 | all | fetchmail | < 6.2.5-16 | fetchmail_6.2.5-16_all.deb |
Debian | 999 | all | fetchmail | < 6.2.5-16 | fetchmail_6.2.5-16_all.deb |
Debian | 13 | all | fetchmail | < 6.2.5-16 | fetchmail_6.2.5-16_all.deb |