CVE-2016-0772


Severity : MEDIUM
Published : 2016-09-02
Modified : 2018-01-04
Base Score : 5.8
Details : The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between the client and the registry to block the StartTLS command, aka a "StartTLS stripping attack."
Product/Version : Pro 5.0  
Carrier Grade CGE 7.0  
CGX 2.0 unspecified  
CGE 5.x  
Mobilinux 5.x  
 
 
 

CVE Vulnerabilities List CVE-2016

CVE-2016-0704 CVE-2016-0772 CVE-2016-0797 CVE-2016-0799
CVE-2016-0800 CVE-2016-1839 CVE-2016-2073 CVE-2016-2105
CVE-2016-2106 CVE-2016-2108 CVE-2016-2182 CVE-2016-2183
CVE-2016-3115 CVE-2016-3841 CVE-2016-3951 CVE-2016-4483
CVE-2016-5387 CVE-2016-6210 CVE-2016-6304 CVE-2016-6515
CVE-2016-9310 CVE-2016-9311