Vulnerabilities > CVE-2013-4584 - Improper Handling of Exceptional Conditions vulnerability in multiple products

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

high complexity

horms

debian

CWE-755

NVD

Published: 2019-11-15

Updated: 2023-12-20

Summary

Perdition before 2.2 may have weak security when handling outbound connections, caused by an error in the STARTTLS IMAP and POP server. ssl_outgoing_ciphers not being applied to STARTTLS connections

Vulnerable Configurations

Part	Description	Count
Application	Horms Horms Perdition - Horms Perdition 0.0.0 Horms Perdition 0.1.0 Horms Perdition 0.1.1 Horms Perdition 0.1.2 Horms Perdition 0.1.3 Horms Perdition 0.1.4 Horms Perdition 0.1.5 Horms Perdition 0.1.6 Horms Perdition 0.1.7 Horms Perdition 0.1.8 Horms Perdition 0.1.9 Horms Perdition 0.1.10 Horms Perdition 1.11 Horms Perdition 1.12 Horms Perdition 1.13 Horms Perdition 1.14 Horms Perdition 1.15 Horms Perdition 1.17 Horms Perdition 1.17.1 Horms Perdition 1.18 Horms Perdition 1.19 Horms Perdition 2.0	43
OS	Debian Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0	3

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References