CVE-2020-14954 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Severity

59%

Complexity

22%

Confidentiality

60%

Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a TLS context, aka "response injection."

CVSS 3.1 Base Score 5.9. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

Type

Debian Linux

First reported 3 years ago

2020-06-21 17:15:00

Last updated 3 years ago

2020-07-28 22:15:00

Affected Software

Debian Linux 9.0

9.0

Debian Linux 10

10

References

http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200615/000023.html

http://www.mutt.org/

https://github.com/neomutt/neomutt/commit/fb013ec666759cb8a9e294347c7b4c1f597639cc

https://github.com/neomutt/neomutt/releases/tag/20200619

https://gitlab.com/muttmua/mutt/-/commit/c547433cdf2e79191b15c6932c57f1472bfb5ff4

https://gitlab.com/muttmua/mutt/-/issues/248

DSA-4707

DSA-4708

http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200615/000023.html

Mailing List, Vendor Advisory

http://www.mutt.org/

Vendor Advisory

https://github.com/neomutt/neomutt/commit/fb013ec666759cb8a9e294347c7b4c1f597639cc

Patch, Third Party Advisory

https://github.com/neomutt/neomutt/releases/tag/20200619

Release Notes, Third Party Advisory

https://gitlab.com/muttmua/mutt/-/commit/c547433cdf2e79191b15c6932c57f1472bfb5ff4

Patch, Third Party Advisory

https://gitlab.com/muttmua/mutt/-/issues/248

Third Party Advisory

DSA-4707

Third Party Advisory

DSA-4708

Third Party Advisory

openSUSE-SU-2020:0903

openSUSE-SU-2020:0915

[debian-lts-announce] 20200630 [SECURITY] [DLA 2268-1] mutt security update

[debian-lts-announce] 20200630 [SECURITY] [DLA 2268-2] mutt regression update

FEDORA-2020-31af2ac7fd

FEDORA-2020-1cb4c3697b

USN-4403-1

GLSA-202007-57

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.