NVD

Id
3824  
Name
CVE-2008-3962  
Description
The from_format function in ssmtp.c in ssmtp 2.61 and 2.62, in certain configurations, uses uninitialized memory for the From: field of an e-mail message, which might allow remote attackers to obtain sensitive information (memory contents) in opportunistic circumstances by reading a message.  
Reject
 
CVSS Version
2  
CVSS Score
2.6  
Severity
Low  
CVSS Base Score
2.6  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-03  
Published
2008-09-10  
Modified Date
2011-07-11  
Seq
2008-3962  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
24207 3824 CVE-2008-3962 [oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure  View
24208 3824 CVE-2008-3962 [oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure  View
24209 3824 CVE-2008-3962 [oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure  View
24210 3824 CVE-2008-3962 31094  View
24211 3824 CVE-2008-3962 ADV-2008-2597  View
24212 3824 CVE-2008-3962 ssmtp-fromformat-information-disclosure(45038)  View
24213 3824 CVE-2008-3962 https://bugs.gentoo.org/234391  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50895 JVNDB-2008-006205 ssmtp の ssmtp.c における重要な情報を取得される脆弱性 ssmtp の ssmtp.c の from_format 関数は、特定の設定で、電子メールメッセージの From: フィールドに対して初期化されていないメモリを使用するため、重要な情報 (メモリコンテンツ) を取得される脆弱性が存在します。 CVE-2008-3962 34075 CVE-2008-3962 3824 2.6 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-006205.html 2008-08-10 2012-12-20 View