imapsync prior to 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote malicious users to obtain credentials by sniffing the network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imapsync project imapsync |
||
imapsync project imapsync 1.53 |
||
imapsync project imapsync 1.547 |
||
imapsync project imapsync 1.516 |
||
imapsync project imapsync 1.504 |
||
imapsync project imapsync 1.554 |
||
imapsync project imapsync 1.500 |
||
imapsync project imapsync 1.558 |
||
imapsync project imapsync 1.567 |
||
imapsync project imapsync 1.542 |
||
imapsync project imapsync 1.569 |
||
imapsync project imapsync 1.518 |
||
imapsync project imapsync 1.508 |
||
imapsync project imapsync 1.525 |
||
imapsync project imapsync 1.564 |