CVE-2005-3088

Publication date 27 October 2005

Last updated 24 July 2024

Ubuntu priority

fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
fetchmail	7.04 feisty	Fixed 6.3.6-1ubuntu2
	6.10 edgy	Fixed 6.3.4-1ubuntu4.1
	6.06 LTS dapper	Fixed 6.3.2-2ubuntu2.1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-215-1
fetchmailconf vulnerability
8 November 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-3088