CVE-2021-38084

Published: 2021-08-03T22:15Z

Last Modified: 2024-11-21T06:16Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt