CVE-2009-2666
Vulnerability from cvelistv5
Published
2009-08-07 18:33
Modified
2024-08-07 05:59
Severity ?
Summary
socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
References
cve@mitre.orghttp://fetchmail.berlios.de/fetchmail-SA-2009-01.txt
cve@mitre.orghttp://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
cve@mitre.orghttp://marc.info/?l=oss-security&m=124949601207156&w=2
cve@mitre.orghttp://osvdb.org/56855
cve@mitre.orghttp://secunia.com/advisories/36175Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/36179Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/36236Vendor Advisory
cve@mitre.orghttp://support.apple.com/kb/HT3937
cve@mitre.orghttp://www.debian.org/security/2009/dsa-1852
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2009:201
cve@mitre.orghttp://www.securityfocus.com/archive/1/505530/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/35951
cve@mitre.orghttp://www.securitytracker.com/id?1022679
cve@mitre.orghttp://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463
cve@mitre.orghttp://www.vupen.com/english/advisories/2009/2155Vendor Advisory
cve@mitre.orghttp://www.vupen.com/english/advisories/2009/3184Vendor Advisory
cve@mitre.orghttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059
af854a3a-2127-422b-91ae-364da2661108http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt
af854a3a-2127-422b-91ae-364da2661108http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=oss-security&m=124949601207156&w=2
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/56855
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36175Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36179Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36236Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://support.apple.com/kb/HT3937
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2009/dsa-1852
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2009:201
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/505530/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/35951
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1022679
af854a3a-2127-422b-91ae-364da2661108http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/2155Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/3184Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059
Impacted products
Vendor Product Version
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T05:59:56.877Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "MDVSA-2009:201",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_MANDRIVA",
                     "x_transferred",
                  ],
                  url: "http://www.mandriva.com/security/advisories?name=MDVSA-2009:201",
               },
               {
                  name: "36175",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/36175",
               },
               {
                  name: "36236",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/36236",
               },
               {
                  name: "DSA-1852",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_DEBIAN",
                     "x_transferred",
                  ],
                  url: "http://www.debian.org/security/2009/dsa-1852",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt",
               },
               {
                  name: "[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "http://marc.info/?l=oss-security&m=124949601207156&w=2",
               },
               {
                  name: "20090806 fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666)",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/505530/100/0/threaded",
               },
               {
                  name: "SSA:2009-218-01",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SLACKWARE",
                     "x_transferred",
                  ],
                  url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463",
               },
               {
                  name: "36179",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/36179",
               },
               {
                  name: "1022679",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id?1022679",
               },
               {
                  name: "56855",
                  tags: [
                     "vdb-entry",
                     "x_refsource_OSVDB",
                     "x_transferred",
                  ],
                  url: "http://osvdb.org/56855",
               },
               {
                  name: "oval:org.mitre.oval:def:11059",
                  tags: [
                     "vdb-entry",
                     "signature",
                     "x_refsource_OVAL",
                     "x_transferred",
                  ],
                  url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059",
               },
               {
                  name: "ADV-2009-3184",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2009/3184",
               },
               {
                  name: "ADV-2009-2155",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2009/2155",
               },
               {
                  name: "APPLE-SA-2009-11-09-1",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_APPLE",
                     "x_transferred",
                  ],
                  url: "http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://support.apple.com/kb/HT3937",
               },
               {
                  name: "35951",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/35951",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2009-08-05T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "socket.c in fetchmail before 6.3.11 does not properly handle a '\\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-10-10T18:57:01",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "MDVSA-2009:201",
               tags: [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
               ],
               url: "http://www.mandriva.com/security/advisories?name=MDVSA-2009:201",
            },
            {
               name: "36175",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/36175",
            },
            {
               name: "36236",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/36236",
            },
            {
               name: "DSA-1852",
               tags: [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
               ],
               url: "http://www.debian.org/security/2009/dsa-1852",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt",
            },
            {
               name: "[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "http://marc.info/?l=oss-security&m=124949601207156&w=2",
            },
            {
               name: "20090806 fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666)",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/505530/100/0/threaded",
            },
            {
               name: "SSA:2009-218-01",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SLACKWARE",
               ],
               url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463",
            },
            {
               name: "36179",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/36179",
            },
            {
               name: "1022679",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id?1022679",
            },
            {
               name: "56855",
               tags: [
                  "vdb-entry",
                  "x_refsource_OSVDB",
               ],
               url: "http://osvdb.org/56855",
            },
            {
               name: "oval:org.mitre.oval:def:11059",
               tags: [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
               ],
               url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059",
            },
            {
               name: "ADV-2009-3184",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2009/3184",
            },
            {
               name: "ADV-2009-2155",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2009/2155",
            },
            {
               name: "APPLE-SA-2009-11-09-1",
               tags: [
                  "vendor-advisory",
                  "x_refsource_APPLE",
               ],
               url: "http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://support.apple.com/kb/HT3937",
            },
            {
               name: "35951",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/35951",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2009-2666",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "socket.c in fetchmail before 6.3.11 does not properly handle a '\\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "MDVSA-2009:201",
                     refsource: "MANDRIVA",
                     url: "http://www.mandriva.com/security/advisories?name=MDVSA-2009:201",
                  },
                  {
                     name: "36175",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/36175",
                  },
                  {
                     name: "36236",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/36236",
                  },
                  {
                     name: "DSA-1852",
                     refsource: "DEBIAN",
                     url: "http://www.debian.org/security/2009/dsa-1852",
                  },
                  {
                     name: "http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt",
                     refsource: "CONFIRM",
                     url: "http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt",
                  },
                  {
                     name: "[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate",
                     refsource: "MLIST",
                     url: "http://marc.info/?l=oss-security&m=124949601207156&w=2",
                  },
                  {
                     name: "20090806 fetchmail security announcement fetchmail-SA-2009-01 (CVE-2009-2666)",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/505530/100/0/threaded",
                  },
                  {
                     name: "SSA:2009-218-01",
                     refsource: "SLACKWARE",
                     url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463",
                  },
                  {
                     name: "36179",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/36179",
                  },
                  {
                     name: "1022679",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id?1022679",
                  },
                  {
                     name: "56855",
                     refsource: "OSVDB",
                     url: "http://osvdb.org/56855",
                  },
                  {
                     name: "oval:org.mitre.oval:def:11059",
                     refsource: "OVAL",
                     url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059",
                  },
                  {
                     name: "ADV-2009-3184",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2009/3184",
                  },
                  {
                     name: "ADV-2009-2155",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2009/2155",
                  },
                  {
                     name: "APPLE-SA-2009-11-09-1",
                     refsource: "APPLE",
                     url: "http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html",
                  },
                  {
                     name: "http://support.apple.com/kb/HT3937",
                     refsource: "CONFIRM",
                     url: "http://support.apple.com/kb/HT3937",
                  },
                  {
                     name: "35951",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/35951",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2009-2666",
      datePublished: "2009-08-07T18:33:00",
      dateReserved: "2009-08-05T00:00:00",
      dateUpdated: "2024-08-07T05:59:56.877Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2009-2666\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-08-07T19:00:01.063\",\"lastModified\":\"2024-11-21T01:05:26.607\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"socket.c in fetchmail before 6.3.11 does not properly handle a '\\\\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.\"},{\"lang\":\"es\",\"value\":\"socket.c en fetchmail antes de v6.3.11 no maneja correctamente un caracter '\\\\ 0' en el nombre de dominio en el campo Common Name (CN) de un certificado X.509, lo cual permite a atacacantes hombre-en-el-medio (man-in-the-middle) suplantar servidores SSL a su elección a través de certificados manipulados expedidos por una Autoridad de Certificación (CA) legítima, una cuestión relacionada con CVE-2009-2408.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:N\",\"baseScore\":6.4,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-310\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.3.10\",\"matchCriteriaId\":\"21F26EF3-6F31-46C9-9D08-396B3708E498\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF519D04-7596-42C6-A1D8-FC1018D1A414\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AFEC739-BDFA-4D14-9A04-96FFB71AE330\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1923712-7B88-483E-B38A-0EA6FB38EB38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9608A96-D131-401B-B041-09ADEEB59354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4555DBB-B63B-4637-86A9-399B34B27D14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8AB8504-8CD1-4013-9413-1378F3BAE0AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DC47DA9-D110-4E6B-9F5B-D17ECB942B40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"345D0848-958F-4B44-8F31-0793C36A5ADD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E179061-FB6A-44AA-8EAC-4916719D9A28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A6B5F4-C799-45C4-9EAD-A55023767033\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54FDB8B9-5537-4E08-8FA0-931D4BED43E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7EB9B1D-C6B0-494B-8A8C-752E5659EA1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC13DE1B-1428-4842-9567-BBE5EEF7042F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"215ED879-1E26-4FF4-8857-18499C5DE3A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72604F3D-2DE8-4BFF-97D5-4AFA64399201\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8792F7FF-9E56-4201-89FD-F0146D4F0DF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B12812E8-1C5B-46CF-A266-EE19C5CD3B12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DEAA0E8-746D-446D-AAEA-0ED287766332\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D3E14C3-82AE-4D4A-8963-438BECBA5678\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DCFB7BB-2879-4EB7-BE1D-163238E313C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ED223B6-1864-415C-96D6-64E1EDE4C840\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"14CBC8ED-CC10-40B6-8AA7-9F1342432ECB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3417C2E-1117-4FE7-B2FA-74CAB57235B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C61DC4-50D5-44B2-92F8-A59C65144108\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31A37E19-1E07-4FD0-AC6D-6AC3ED954787\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:4.7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"570C9443-81CE-42AC-B4A6-3B2ABAD97EC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"853DD3E0-668F-4FAC-BA0B-D4E9C416D646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEF70FCA-5DA4-4C0B-B876-0345FA077D44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF0C4F7C-0003-4C77-AE22-A9C2FCBFAF3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78D12F53-07DE-447D-8403-40EB75B91955\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19ECB844-F378-4A94-B9FC-A731B8186013\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3169AA63-79F6-4B89-9405-8F6A2FB6FD64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88D1D54C-81A4-44CE-BE12-798CF7DD2CC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6615C7D-09B5-4943-A124-2FF9A0F4B927\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF18219F-0406-4D46-90DE-EA2A17C8EFF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87B56DFD-BDA9-4D8B-BE54-BF59B762D574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33EA0CA8-468F-4A94-8DA3-5D820AB65973\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA21C847-57ED-4E7D-9366-6038467D9080\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0450BD04-15D2-4122-A210-6225B89BDA7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18428805-AEB2-4BA4-9762-906B59CE74D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFCCBB15-DFFE-4A57-A029-E57707D15E04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0427B5C8-265C-47C3-9BAB-B2A0EAA1DEE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89A4B962-BE5B-471C-83EF-674525C5AE83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7166ECCB-54FB-44EA-BA80-4D2AAF494AF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B309C89-99E2-4F0B-976C-95E44A45ADC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3DE7EE7-F627-4955-8D95-1F00F1F85C7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D549098D-FE16-4BCB-91C4-D71A8C8D2E9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57BFA165-6E2E-49AF-9E2D-3D8923CF36C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5C67DFF-A1BE-4486-A11F-CD3729927220\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D365E6E-8777-4084-BEC8-7CBF4997D976\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20C4FF28-0DBA-4995-8252-2D62FF896BC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F80C6B9B-AFCE-46A1-8DEF-51C1B526EB18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF667DB5-F41E-4E73-A01F-4EC3F60BAD0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2B144FA-A901-4CDF-AC3D-7F5E820B7A4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96774635-9A12-4DAB-BCF6-2D678F244CE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFD2EE7A-36CB-4A26-8EEB-DACA2864D921\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3898EBC-75A9-4DDD-A0AF-2CDEC72DAE4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4267DCE8-985C-416D-A6B7-536585E5A573\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50E63EDF-FF0A-447C-A3FC-7BA2414C15CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61DDD4A1-6185-41B6-A715-4C70F0AA2631\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B10A7E3C-07CD-48A6-9075-5314B4E1EEAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"319955A4-27A8-46FF-ACE7-97E6DF27B2DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"925CF3DD-682B-40E6-900C-23F784CD9239\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16366780-611E-4217-A614-EBA01421D148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43AEA36F-E730-4305-9CB6-738A7152F02E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B9536BA-6334-4957-9632-6D64365B88AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F52FA32B-8048-4FD7-9D20-20DC5E52098B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA92DF1-3AAD-46AC-A9E4-E9386C977818\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"837D66DB-F9CB-41F1-A091-BCFBAC2F45B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74D12B67-6E66-419A-A28F-6306402931EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.8.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A71FCBED-B25D-48E3-916C-FBA9E0DE8D12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A17995E-DCAF-465A-8ABD-F1EA0D538784\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93D03D78-C56E-4189-97FC-916C918EDFEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19A66C77-041F-4A12-8A36-233A6B50641C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C945059C-EF39-486D-A804-FBB8704AB927\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1258CA65-FBC1-4848-A9E5-A8F5E5D6FBD5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A91C6418-41F0-46EB-ACFC-FCE907F5AA87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:5.9.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C020534-7596-496C-B9B0-739F58F6F4EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A77D40C-6FF5-42BD-9EFB-B532824D7606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F04C6A76-2718-4DBA-8972-A3EECDDB1A17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38ACD96E-5582-4ED0-BBB1-C891094D8217\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"264386DA-747F-492C-B660-D49BE9DB7139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC4066AC-BE10-4189-86F6-BF94443738DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C25A146-50D5-4BA2-ABA2-20BF8784D7DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72E76256-997F-4229-9B03-7BC3074F359D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A717C50-2C5A-4CD1-B2E6-8CDF450940CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61F908FF-9986-4F71-B0B6-D6A86555EF56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0C1F99C-A246-40D3-B84A-5D11FF24AC1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"028F7F83-AF15-443B-A7DB-4E695E62EAFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B418C3CE-E6E6-401D-AD83-5BB181009A7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre4:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BF06FD2-0A4C-4557-B8EF-F0F021179498\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre8:*:*:*:*:*:*\",\"matchCriteriaId\":\"38C949C2-07A0-4FE4-8FBF-86215CB999CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.6:pre9:*:*:*:*:*:*\",\"matchCriteriaId\":\"88B23630-79DD-4B69-BB01-286193BA562E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc10:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FE21564-68C0-4765-BA40-9D3046C4CB14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"208102ED-6F22-44C5-BAF1-FD85EACF208F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1CF7767-EB24-44E2-8E59-B4DBC99AFD23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF3D6D4C-5FD8-4EE1-A34A-99D397F09E85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"D63D88C1-B201-4D48-9659-5802DC4FD3EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"16463B23-E884-467E-9F63-6B57EED39856\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.2.9:rc9:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F2C03AF-666D-4AF6-BC69-F8B081EB41AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84F90AFA-4B13-46A0-89D7-4065300C94C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAD0F05-8B55-43ED-89D5-61A19F41EDFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99053698-7F8B-4E71-8647-1A8B0DF7CEB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9314F22D-22A8-4374-A2BF-3C64CF1F69BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"816E9640-A932-4E2F-9793-689F80D2AA89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D09BB43-6CBA-499B-91D1-BA256A65E40D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABE76611-08CE-4D85-B57A-021909835A81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B98AFEDF-2BAB-4588-94E0-35AEA5F1B514\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E8BAB5B-4DBC-4D05-B5E2-591573BC05FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"02F6E729-A2F2-42AC-A941-F57A0A4E84A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"4143D519-4B49-4E71-8686-FC6A095F0999\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.6:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"387ADB82-4FAD-44DA-ABF2-2F4645C4F1E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CED4FBCB-B6DF-429D-871D-2A9F7F59E63B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"237F86BD-82CD-4A37-BF64-F103B1304F0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"667847D9-58DD-4693-B544-593AC6D7746D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fetchmail:fetchmail:6.3.9:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"12BA2E29-5547-45F5-BC46-1A7B4A222055\"}]}]}],\"references\":[{\"url\":\"http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=oss-security&m=124949601207156&w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/56855\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/36175\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/36179\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/36236\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://support.apple.com/kb/HT3937\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1852\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:201\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/505530/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/35951\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1022679\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/2155\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/3184\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://fetchmail.berlios.de/fetchmail-SA-2009-01.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=oss-security&m=124949601207156&w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/56855\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/36175\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/36179\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/36236\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://support.apple.com/kb/HT3937\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1852\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:201\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/505530/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/35951\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1022679\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.543463\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/2155\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/3184\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11059\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
   },
}


Log in or create an account to share your comment.

Security Advisory comment format.

This schema specifies the format of a comment related to a security advisory.

UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).



Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.