CVE-2005-3088

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2005-3088 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The information has been provided by Matthias Andree.
The original article can be found at: http://fetchmail.berlios.de/fetchmail-SA-2005-02.txt

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2005-3088

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* fetchmail version 6.2.5.2
* fetchmail version 6.2.5
* fetchmail version 6.2.0
* fetchmailconf version 1.43
* fetchmailconf version 1.43.1

Immune Systems:
* Fetchmail version 6.2.9-rc6
* fetchmailconf version 1.43.2
* fetchmailconf version 1.49
* fetchmail version 6.3.0

The fetchmailconf program opens the control file, writes the configuration to it, and only then changes the file's security settings to 0600 (rw-------). As the file, usually contains passwords, not making it unreadable to other users, can cause a situation where the file can be used to expose passwords.

Workaround:
Run "umask 077", then run "fetchmailconf" from the same shell. After fetchmailconf has finished, you can restore your old umask.

Vendor Status:
The vendor has fixed the issue:
For users of fetchmail-6.2.5.2: Download fetchmailconf-1.43.2.gz.

For users of fetchmail-6.2.6* or 6.2.9* before 6.2.9-rc6: update to the latest fetchmail-devel package 6.2.9-rc6.

CVE Information:
CVE-2005-3088

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus