FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

postfix -- plaintext command injection with SMTP over TLS

Affected packages
2.7.*,1 <= postfix < 2.7.3,1
2.6.*,1 <= postfix < 2.6.9,1
2.5.*,2 <= postfix < 2.5.12,2
2.4.*,1 <= postfix < 2.4.16,1
2.7.*,1 <= postfix-base < 2.7.3,1
2.6.*,1 <= postfix-base < 2.6.9,1
2.5.*,2 <= postfix-base < 2.5.12,2
2.4.*,1 <= postfix-base < 2.4.16,1
postfix-current < 2.9.20100120,4
postfix-current-base < 2.9.20100120,4

Details

VuXML ID 14a6f516-502f-11e0-b448-bbfa2731f9c7
Discovery 2011-03-07
Entry 2011-03-19

Wietse Venema has discovered a software flaw that allows an attacker to inject client commands into an SMTP session during the unprotected plaintext SMTP protocol phase, such that the server will execute those commands during the SMTP- over-TLS protocol phase when all communication is supposed to be protected.

References

CVE Name CVE-2011-0411
URL http://secunia.com/advisories/43646/
URL http://www.postfix.org/CVE-2011-0411.html