CVE-2011-1431

Severity Score

6.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in the netqmail-1.06-tls patch for netqmail 1.06 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

La implementación qmail-smtpd.c en qmail-smtpd en el parche netqmail-1.06-tls para netqmail v1.06 no restringe el búfer I/O de forma adecuada, lo que permite a los atacantes "man-in-the-middle insertar comandos en las sesiones SMTP cifrado mediante el envío de un comando de texto plano que se procesa después de que TLS está en su lugar, relacionado con un ataque "inyección de de comando en texto claro", un problema similar a CVE -2011- 0411.

*Credits: N/A

CVSS Scores

NISTv2 6.8

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-03-16 CVE Reserved
2011-03-16 CVE Published
2023-03-07 EPSS Updated
2024-08-06 CVE Updated
2024-08-06 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (9)

URL	Tag	Source
http://securityreason.com/securityalert/8144	Third Party Advisory
http://www.kb.cert.org/vuls/id/555316	Third Party Advisory
http://www.kb.cert.org/vuls/id/MAPG-8D9M5Q	Us Government Resource
http://www.securityfocus.com/bid/46767	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/65932	Vdb Entry

URL	Date	SRC
http://www.postfix.org/CVE-2011-0411.html	2024-08-06
http://www.securityfocus.com/archive/1/516901	2024-08-06

URL	Date	SRC
http://inoa.net/qmail-tls/vu555316.patch	2017-08-17

URL	Date	SRC
http://www.vupen.com/english/advisories/2011/0612	2017-08-17

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Frederik Vermeulen Search vendor "Frederik Vermeulen"		Netqmail Search vendor "Frederik Vermeulen" for product "Netqmail"				1.06 Search vendor "Frederik Vermeulen" for product "Netqmail" and version "1.06"		-		Affected