• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Assigning CNA
Date Entry Created
20020131 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20020817-01)
Votes (Legacy)
ACCEPT(4) Armstrong, Baker, Cole, Green
MODIFY(1) Frech
NOOP(2) Foat, Wall
Comments (Legacy)
 Frech> XF:fetchmail-signed-integer-index(6965)

Proposed (Legacy)
This is an entry on the CVE list, which standardizes names for security problems.