Denial of Service Vulnerability in GNU Mailutils IMAP Server
CVE-2005-1522

Currently unrated

Key Information:

Vendor: Gnu
Status: Mailutils
Vendor: CVE Published:; 26 May 2005

Summary

The imap4d server for GNU Mailutils versions 0.5 and 0.6, as well as earlier versions up to 0.6.90, is vulnerable to a denial of service attack. Authenticated remote users can exploit this vulnerability by sending a FETCH command with a disproportionately large range value, which can lead to excessive CPU consumption and service interruptions.

References

http://www.idefense.com/application/poi/display?id=247&ty...

third-party-advisoryx_refsource_IDEFENSE

http://securitytracker.com/id?1014052

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/15442

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
May 26, 2005
Vulnerability Reserved
May 12, 2005