Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades.
http://fetchmail.berlios.de/fetchmail-SA-2008-01.txt http://www.vuxml.org/freebsd/168190df-3e9a-11dd-87bc-000ea69a5213.html
Insight
The following package is affected: fetchmail
CVE-2008-2711
fetchmail 6.3.8 and earlier, when running in -v -v mode, allows remote attackers to cause a denial of service (crash and persistent mail failure) via a malformed mail message with long headers, which is not properly handled when using vsnprintf to format log messages.
Severity
Classification
-
CVE CVE-2008-2711 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities