Mandriva Update For Evolution MDKSA-2007:107 (evolution) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A weakness in the way Evolution processed certain APOP authentication requests was discovered. A remote attacker could potentially obtain certain portions of a user's authentication credentials by sending certain responses when evolution-data-server attempted to authenticate against an APOP server. The updated packages have been patched to prevent this issue.

Affected

evolution on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64, Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64

Severity

Classification

CVE CVE-2007-1558

CVSS	Base Score: 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Mandriva Update for krb5 MDVA-2010:177-1 (krb5)
Mandriva Update for evolution MDVA-2010:047 (evolution)
Mandriva Update for wireshark MDVSA-2012:080 (wireshark)
Mandriva Update for gv MDVSA-2010:159 (gv)
Mandriva Update for gdm MDKSA-2007:169 (gdm)

Mandriva Update for evolution MDKSA-2007:107 (evolution)

Take action and discover your vulnerabilities