fetchmail NTLM Authentication Stack Buffer Overflow Vulnerability

56% confidence

Description

fetchmail's NTLM authentication code is vulnerable to a stack buffer overflow, potentially allowing remote code execution (RCE) due to stack smashing. The vulnerability exists in versions up to 6.6.6 and is fixed in release candidate 6.6.7.rc1.

Affected Products

Vendor	Product	Versions
fetchmail	fetchmail	<= 6.6.6

Related News (1 articles)

Tier C

oss-security10h ago

fetchmail's NTLM authentication vulnerable to stack buffer overflow up to release 6.6.6 (FW: The 6.6.7.rc1 release candidate is available (security fix for NTLM protocol, possible RCE))

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

6.6.7.rc1

CWECWE-119

PublishedJun 27, 2026

Last enriched10h ago

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: reported

Confidence: 56%

Vulnerability Timeline

CVE Published

Jun 27, 2026

Patch Available

Jun 27, 2026

Discovered by ZDM

Jun 27, 2026