CVE-2005-1523

Currently unrated

Key Information:

Vendor: Gnu
Status: Mailutils
Vendor: CVE Published:; 26 May 2005

Summary

Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the command tag for IMAP commands.

References

http://securitytracker.com/id?1014052

vdb-entryx_refsource_SECTRACK

http://www.idefense.com/application/poi/display?id=246&ty...

third-party-advisoryx_refsource_IDEFENSE

http://secunia.com/advisories/15442

third-party-advisoryx_refsource_SECUNIA

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 26, 2005
Vulnerability Reserved
May 12, 2005