Red Hat Bugzilla – Bug 221981
CVE-2006-5867 fetchmail not enforcing TLS for POP3 properly
Last modified: 2007-11-30 17:07:27 EST
Description of problem:
fetchmail issued an advisoty fetchmail-SA-2006-02 fixing numerous issues
with TLS support. Two of them raise an opportiounity for an attacker to do
a MiM attack. See the attached e-mail from mitr for more details.
Created attachment 145163 [details]
Statement from mitr about the issues
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.