Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades.
http://seclists.org/fulldisclosure/2011/Mar/87
http://www.vuxml.org/freebsd/49314321-7fd4-11e1-9582-001b2134ef46.html
Insight
The following package is affected: mutt-devel
CVE-2011-1429
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Severity
Classification
-
CVE CVE-2011-1429 -
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related Vulnerabilities