CVE-2005-3088
EPSS 0.09%fetchmail - programming error
發布日:2005/10/27修改日:2026/4/28
描述
fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.
受影響套件(3)
- Debian/fetchmailfrom 0, < 6.2.5.4-1
- Debian/fetchmailfrom 0, < 5.9.11-6.4
- Debian/fetchmail-sslfrom 0, < 5.9.11-6.3