CVE-2005-3088
EPSS 0.09%fetchmail - programming error
Published: 10/27/2005Modified: 4/28/2026
Description
fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.
Affected packages (3)
- Debian/fetchmailfrom 0, < 6.2.5.4-1
- Debian/fetchmailfrom 0, < 5.9.11-6.4
- Debian/fetchmail-sslfrom 0, < 5.9.11-6.3