Unrated severityNVD Advisory· Published Aug 3, 2021· Updated Aug 4, 2024
CVE-2021-38084
CVE-2021-38084
Description
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Courier Mail Server/Courier Mail Serverdescription
- Range: <1.1.5
Patches
Vulnerability mechanics
References
2- sourceforge.net/p/courier/mailman/courier-imap/thread/cone.1382574216.483027.8082.1000%40monster.email-scan.com/mitrex_refsource_MISC
- sourceforge.net/p/courier/mailman/message/37329216/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.