Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-3355

evolution-data-server3 3.0.3 through 3.2.1 used insecure (non-SSL) connection when attempting to store sent email messages into the Sent folder, when the Sent folder was located on the remote server. An attacker could use this flaw to obtain login credentials of the victim.

Published

2019-11-25T23:15:10.633

Last Modified

2024-11-21T01:30:19.593

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.3 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-311

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gnome	evolution-data-server3	≤ 3.2.1	Yes
Operating System	linux	linux_kernel	-	No

References

https://access.redhat.com/security/cve/cve-2011-3355 Third Party Advisory ([email protected])
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641052 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3355 Issue Tracking, Third Party Advisory ([email protected])
https://security-tracker.debian.org/tracker/CVE-2011-3355 Third Party Advisory ([email protected])
https://www.openwall.com/lists/oss-security/2011/09/09/1 Exploit, Mailing List ([email protected])
https://access.redhat.com/security/cve/cve-2011-3355 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641052 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3355 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security-tracker.debian.org/tracker/CVE-2011-3355 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.openwall.com/lists/oss-security/2011/09/09/1 Exploit, Mailing List (af854a3a-2127-422b-91ae-364da2661108)