Format String Vulnerability in GNU Mailutils IMAP4D Server
CVE-2005-1523

Currently unrated

Key Information:

Vendor

Gnu
Status
Mailutils
Vendor
CVE Published:
26 May 2005

What is CVE-2005-1523?

The format string vulnerability in the imap4d server of GNU Mailutils affects versions 0.5, 0.6, and earlier than 0.6.90. This issue enables remote attackers to execute arbitrary code by exploiting format string specifiers within the command tag of IMAP commands. Such vulnerabilities pose significant risks as they can lead to unauthorized access and control over the affected systems. Users of GNU Mailutils are urged to update to a secure version to mitigate this risk.

References

http://securitytracker.com/id?1014052
vdb-entryx_refsource_SECTRACK
http://www.idefense.com/application/poi/display?id=246&ty...
third-party-advisoryx_refsource_IDEFENSE
http://secunia.com/advisories/15442
third-party-advisoryx_refsource_SECUNIA

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.