Denial of Service Vulnerability in GNU Mailutils IMAP Server
CVE-2005-1522

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
26 May 2005

Summary

The imap4d server for GNU Mailutils versions 0.5 and 0.6, as well as earlier versions up to 0.6.90, is vulnerable to a denial of service attack. Authenticated remote users can exploit this vulnerability by sending a FETCH command with a disproportionately large range value, which can lead to excessive CPU consumption and service interruptions.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.