Buffer Overflow in GNU Mailutils Allows Remote Code Execution
CVE-2005-1520

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
26 May 2005

Summary

The vulnerability arises from a buffer overflow in the header_get_field_name function within header.c of GNU Mailutils versions 0.5 and 0.6, and earlier versions before 0.6.90. This flaw permits remote attackers to execute arbitrary code by sending a specially crafted email, posing significant security risks to systems utilizing this software.

References

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.