Multiple Vendors STARTTLS Implementation Plaintext Arbitrary Command Injection Vulnerability CVE-2011-0411CVE-2011-1430CVE-2011-1431CVE-2011-1432CVE-2011-1506CVE-2011-1575CVE-2011-1926CVE-2011-2165

Name: Multiple Vendors STARTTLS Implementation Plaintext Arbitrary Command Injection Vulnerability (CVE-2011-0411, CVE-2011-1430, CVE-2011-1431, CVE-2011-1432, CVE-2011-1506, CVE-2011-1575, CVE-2011-1926, CVE-2011-2165)
Published: 2018-01-02T00:00:00.000Z

Severity: Not available

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: http://www.securityfocus.com/bid/46767 http://kolab.org/pipermail/kolab-announce/2011/000101.html http://bugzilla.cyrusimap.org/show_bug.cgi?id=3424 http://cyrusimap.org/mediawiki/index.php/Bugs_Resolved_in_2.4.7 http://www.kb.cert.org/vuls/id/MAPG-8D9M4P http://files.kolab.org/server/release/kolab-server-2.3.2/sources/release-notes.txt http://www.postfix.org/CVE-2011-0411.html http://www.pureftpd.org/project/pure-ftpd/news http://www.watchguard.com/support/release-notes/xcs/9/en-US/EN_ReleaseNotes_XCS_9_1_1/EN_ReleaseNotes_WG_XCS_9_1_TLS_Hotfix.pdf http://www.spamdyke.org/documentation/Changelog.txt http://datatracker.ietf.org/doc/draft-josefsson-kerberos5-starttls/?include_text=1 http://www.securityfocus.com/archive/1/516901 http://support.avaya.com/css/P8/documents/100134676 http://support.avaya.com/css/P8/documents/100141041 http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html http://inoa.net/qmail-tls/vu555316.patch http://www.kb.cert.org/vuls/id/555316
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: Jan 2, 2018
Software Type: Not available
Vendor: Not available
Product: Not available

Detect & validate this vulnerability

Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.

Compare paid plans See all tools