Vulnerabilities > CVE-2007-3209 - Unspecified vulnerability in Nongnu Mail Notification 4.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses unencrypted connections for accounts configured with SSL/TLS, which allows remote attackers to obtain sensitive information by sniffing the network.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=428157
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=428157
- http://osvdb.org/37205
- http://osvdb.org/37205
- http://secunia.com/advisories/25600
- http://secunia.com/advisories/25600
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34814
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34814
- https://savannah.nongnu.org/bugs/index.php?20131
- https://savannah.nongnu.org/bugs/index.php?20131