Back to search
CVE-2014-3556
Published: Dec 29, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x before 1.7.4 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
HPSBOV03227
vendor-advisory
x_refsource_HP
https://bugzilla.redhat.com/show_bug.cgi?id=1126891
x_refsource_CONFIRM
[nginx-announce] 20140805 nginx security advisory (CVE-2014-3556)
mailing-list
x_refsource_MLIST
http://nginx.org/download/patch.2014.starttls.txt
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now