Format String Vulnerability in GNU Mailutils IMAP4D Server
CVE-2005-1523

Currently unrated

Key Information:

Vendor: Gnu
Status: Mailutils
Vendor: CVE Published:; 26 May 2005

Summary

The format string vulnerability in the imap4d server of GNU Mailutils affects versions 0.5, 0.6, and earlier than 0.6.90. This issue enables remote attackers to execute arbitrary code by exploiting format string specifiers within the command tag of IMAP commands. Such vulnerabilities pose significant risks as they can lead to unauthorized access and control over the affected systems. Users of GNU Mailutils are urged to update to a secure version to mitigate this risk.

References

http://securitytracker.com/id?1014052

vdb-entryx_refsource_SECTRACK

http://www.idefense.com/application/poi/display?id=246&ty...

third-party-advisoryx_refsource_IDEFENSE

http://secunia.com/advisories/15442

third-party-advisoryx_refsource_SECUNIA

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 26, 2005
Vulnerability Reserved
May 12, 2005