Dozens of STARTTLS Related Flaws Found Affecting Popular Email Clients

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,165
Content source
https://thehackernews.com/2021/08/dozens-of-starttls-related-flaws-found.html
Security researchers have disclosed as many as 40 different vulnerabilities associated with an opportunistic encryption mechanism in mail clients and servers that could open the door to targeted man-in-the-middle (MitM) attacks, permitting an intruder to forge mailbox content and steal credentials.

The now-patched flaws, identified in various STARTTLS implementations, were detailed by a group of researchers Damian Poddebniak, Fabian Ising, Hanno Böck, and Sebastian Schinzel at the 30th USENIX Security Symposium. In an Internet-wide scan conducted during the study, 320,000 email servers were found vulnerable to what's called a command injection attack.

Some of the popular clients affected by the bugs include Apple Mail, Gmail, Mozilla Thunderbird, Claws Mail, Mutt, Evolution, Exim, Mail.ru, Samsung Email, Yandex, and KMail. The attacks require that the malicious party can tamper connections established between an email client and the email server of a provider and has login credentials for their own account on the same server.

STARTTLS refers to a form of opportunistic TLS that enables email communication protocols such as SMTP, POP3, and IMAP to be transitioned or upgraded from a plain text connection to an encrypted connection instead of having to use a separate port for encrypted communication.

"Upgrading connections via STARTTLS is fragile and vulnerable to a number of security vulnerabilities and attacks," the researchers noted, allowing a meddler-in-the-middle to inject plaintext commands that a "server would be interpret as if they were part of the encrypted connection," thereby enabling the adversary to steal credentials with the SMTP and IMAP protocols.

"Email clients must authenticate themselves with a username and password before submitting a new email or accessing existing emails. For these connections, the transition to TLS via STARTTLS must be strictly enforced because a downgrade would reveal the username and password and give an attacker full access to the email account," the researchers added.
Click to expand...
thehackernews.com

Dozens of STARTTLS Related Flaws Found Affecting Popular Email Clients

Researchers Discover Dozens of STARTTLS Encryption Related Bugs Affecting Several Popular Email Clients and Services.
thehackernews.com thehackernews.com
 
  • Like
Reactions: upnorth, The_King, Gandalf_The_Grey and 4 others
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Hackers email stolen student data to parents of Nevada school district
Replies
1
Views
796
News Archive
ForgottenSeer 103564
F
[correlate]
    • Like
    • +Reputation
Millions of Exim mail servers exposed to zero-day RCE attacks
Replies
0
Views
1,351
News Archive
[correlate]
[correlate]
F
    • Wow
    • HaHa
Security News Microsoft employees exposed internal passwords in security lapse
Replies
3
Views
1,359
Security News
Freki123
F

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top