Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-n6na-y3zc-eqa2
Summary
Gaƫtan Leurent informed us of a weakness in APOP
authentication that could allow an attacker to recover the first
part of your mail password if the attacker could interpose
a malicious mail server on your network masquerading as your legitimate
mail server. With normal settings it could take several hours for
the attacker to gather enough data to recover just a few characters
of the password. This result was presented at the
Fast Software Encryption 2007 conference.In a rump session at the same conference a team from The University of
Electro-Communications claimed that a variant on the same hash-collision
attack allowed them to recover a 31 character password.Fixed versions of Thunderbird and SeaMonkey mail prevent this
technique by stricter enforcement of the Message-ID format used
by APOP.POP mail accounts which do not use any authentication are
common and in the same hypothetical situation the password could
be recovered immediately without any special programming on the
attacker's part.
Aliases
0
alias CVE-2007-1558
Fixed_packages
0
url pkg:deb/debian/balsa@2.3.25-1
purl pkg:deb/debian/balsa@2.3.25-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@2.3.25-1
1
url pkg:deb/debian/fetchmail@6.3.9~rc2-4%2Blenny2
purl pkg:deb/debian/fetchmail@6.3.9~rc2-4%2Blenny2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.3.9~rc2-4%252Blenny2
2
url pkg:deb/debian/mailfilter@0.8.2-1
purl pkg:deb/debian/mailfilter@0.8.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailfilter@0.8.2-1
3
url pkg:deb/debian/mutt@1.5.18-6
purl pkg:deb/debian/mutt@1.5.18-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-paz7-2kzy-hbb3
14
vulnerability VCID-shkc-6sp1-k3g7
15
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.18-6
4
url pkg:mozilla/SeaMonkey@1.0.9
purl pkg:mozilla/SeaMonkey@1.0.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@1.0.9
5
url pkg:mozilla/SeaMonkey@1.1.2
purl pkg:mozilla/SeaMonkey@1.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@1.1.2
Affected_packages
0
url pkg:deb/debian/balsa@0.4.6.2-1
purl pkg:deb/debian/balsa@0.4.6.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@0.4.6.2-1
1
url pkg:deb/debian/balsa@0.6.0-1.1
purl pkg:deb/debian/balsa@0.6.0-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@0.6.0-1.1
2
url pkg:deb/debian/balsa@1.2.4-2.2
purl pkg:deb/debian/balsa@1.2.4-2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@1.2.4-2.2
3
url pkg:deb/debian/balsa@2.3.0-2sarge1
purl pkg:deb/debian/balsa@2.3.0-2sarge1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@2.3.0-2sarge1
4
url pkg:deb/debian/balsa@2.3.13-2
purl pkg:deb/debian/balsa@2.3.13-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@2.3.13-2
5
url pkg:deb/debian/balsa@2.3.13-3
purl pkg:deb/debian/balsa@2.3.13-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/balsa@2.3.13-3
6
url pkg:deb/debian/fetchmail@4.3.9-1
purl pkg:deb/debian/fetchmail@4.3.9-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@4.3.9-1
7
url pkg:deb/debian/fetchmail@4.6.4-1.1
purl pkg:deb/debian/fetchmail@4.6.4-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@4.6.4-1.1
8
url pkg:deb/debian/fetchmail@5.3.3-3
purl pkg:deb/debian/fetchmail@5.3.3-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@5.3.3-3
9
url pkg:deb/debian/fetchmail@5.9.11-6.2
purl pkg:deb/debian/fetchmail@5.9.11-6.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@5.9.11-6.2
10
url pkg:deb/debian/fetchmail@6.2.5-12sarge5
purl pkg:deb/debian/fetchmail@6.2.5-12sarge5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.2.5-12sarge5
11
url pkg:deb/debian/fetchmail@6.3.6-1
purl pkg:deb/debian/fetchmail@6.3.6-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.3.6-1
12
url pkg:deb/debian/fetchmail@6.3.6-1etch3
purl pkg:deb/debian/fetchmail@6.3.6-1etch3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/fetchmail@6.3.6-1etch3
13
url pkg:deb/debian/mailfilter@0.3.3-1
purl pkg:deb/debian/mailfilter@0.3.3-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailfilter@0.3.3-1
14
url pkg:deb/debian/mailfilter@0.6.2-1
purl pkg:deb/debian/mailfilter@0.6.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailfilter@0.6.2-1
15
url pkg:deb/debian/mailfilter@0.6.2-3
purl pkg:deb/debian/mailfilter@0.6.2-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailfilter@0.6.2-3
16
url pkg:deb/debian/mailfilter@0.8.1-1.1
purl pkg:deb/debian/mailfilter@0.8.1-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n6na-y3zc-eqa2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mailfilter@0.8.1-1.1
17
url pkg:deb/debian/mutt@0.91.2-2
purl pkg:deb/debian/mutt@0.91.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@0.91.2-2
18
url pkg:deb/debian/mutt@0.95.3-0.2
purl pkg:deb/debian/mutt@0.95.3-0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@0.95.3-0.2
19
url pkg:deb/debian/mutt@1.2.5-5
purl pkg:deb/debian/mutt@1.2.5-5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.2.5-5
20
url pkg:deb/debian/mutt@1.3.28-2.2
purl pkg:deb/debian/mutt@1.3.28-2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.3.28-2.2
21
url pkg:deb/debian/mutt@1.5.9-2sarge2
purl pkg:deb/debian/mutt@1.5.9-2sarge2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.9-2sarge2
22
url pkg:deb/debian/mutt@1.5.13-1.1
purl pkg:deb/debian/mutt@1.5.13-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.13-1.1
23
url pkg:deb/debian/mutt@1.5.13-1.1etch1
purl pkg:deb/debian/mutt@1.5.13-1.1etch1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29an-2kma-fuf4
1
vulnerability VCID-2bm9-4ums-1ydg
2
vulnerability VCID-3uy8-vqh9-r3hh
3
vulnerability VCID-5ctn-49r3-nba2
4
vulnerability VCID-7ta6-tmu9-qkes
5
vulnerability VCID-8qj4-efgv-cfa1
6
vulnerability VCID-9e6v-c62e-rfcm
7
vulnerability VCID-9faq-7ug9-2qfz
8
vulnerability VCID-d3um-x65k-wkcw
9
vulnerability VCID-dhda-7ss4-p7fz
10
vulnerability VCID-f56e-963w-gka8
11
vulnerability VCID-hf2r-ve96-xfeb
12
vulnerability VCID-ka9r-zy4r-kfhn
13
vulnerability VCID-n6na-y3zc-eqa2
14
vulnerability VCID-paz7-2kzy-hbb3
15
vulnerability VCID-shkc-6sp1-k3g7
16
vulnerability VCID-v7r1-m3qa-pke6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mutt@1.5.13-1.1etch1
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1558
reference_id CVE-2007-1558
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1558
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2007-15
reference_id mfsa2007-15
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2007-15
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-n6na-y3zc-eqa2