CVE-2014-3556
EPSS 48.2%
Description
The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x before 1.7.4 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
How to fix CVE-2014-3556
To remediate CVE-2014-3556, upgrade the affected package to a fixed version below.
- Debian/nginx—upgrade to 1.6.1-1 or later
Is CVE-2014-3556 being exploited?
Moderate — EPSS is 48.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 1.6.1-1