Fetchmail STARTTLS Remote Denial of Service Vulnerability

Fetchmail is prone to a denial-of-service vulnerability because the application fails to properly handle SSL/TLS negotiation.

An attacker can exploit this issue to cause an application hang, denying service to legitimate users.

Fetchmail version 5.9.9 up to and including 6.3.19 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus