Vulnerabilities > CVE-2009-3942 - Cryptographic Issues vulnerability in Martin Lambers Msmtp
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
- Signature Spoofing by Key Recreation An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Nessus
NASL family SuSE Local Security Checks NASL id SUSE_11_2_MSMTP-100117.NASL description msmtp did not properly handle a last seen 2020-06-01 modified 2020-06-02 plugin id 44091 published 2010-01-20 reporter This script is Copyright (C) 2010-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/44091 title openSUSE Security Update : msmtp (msmtp-1813) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201206-34.NASL description The remote host is affected by the vulnerability described in GLSA-201206-34 (msmtp: X.509 NULL spoofing vulnerability) A vulnerability have been discovered in msmtp. Please review the CVE identifier referenced below for details. Impact : A remote attacker might employ a specially crafted certificate to conduct man-in-the-middle attacks on SSL connections made using msmtp. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 59707 published 2012-06-26 reporter This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/59707 title GLSA-201206-34 : msmtp: X.509 NULL spoofing vulnerability NASL family SuSE Local Security Checks NASL id SUSE_11_1_MSMTP-100118.NASL description msmtp did not properly handle a last seen 2020-06-01 modified 2020-06-02 plugin id 44089 published 2010-01-20 reporter This script is Copyright (C) 2010-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/44089 title openSUSE Security Update : msmtp (msmtp-1813) NASL family SuSE Local Security Checks NASL id SUSE_11_0_MSMTP-100118.NASL description msmtp did not properly handle a last seen 2020-06-01 modified 2020-06-02 plugin id 44087 published 2010-01-20 reporter This script is Copyright (C) 2010-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/44087 title openSUSE Security Update : msmtp (msmtp-1813)