CVE-2005-3088
CVE-2005-3088
fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://fetchmail.berlios.de/fetchmail-SA-2005-02.txthttp://lists.apple.com/archives/security-announce/2006//Aug/msg00000.htmlhttp://marc.info/?l=bugtraq&m=113042785902031&w=2http://secunia.com/advisories/17293http://secunia.com/advisories/17349http://secunia.com/advisories/17446http://secunia.com/advisories/17491http://secunia.com/advisories/17495http://secunia.com/advisories/17631http://secunia.com/advisories/18895http://secunia.com/advisories/21253http://securitytracker.com/id?1015114