FreeBSD : mutt-devel -- failure to check SMTP TLS server certificate (49314321-7fd4-11e1-9582-001b2134ef46)
Medium Nessus Plugin ID 58642
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionDave B reports on Full Disclosure :
It seems that mutt fails to check the validity of a SMTP servers certificate during a TLS connection. [...] This means that an attacker could potentially MITM a mutt user connecting to their SMTP server even when the user has forced a TLS connection.
SolutionUpdate the affected package.