CVE-2005-2878

Currently unrated

Key Information:

Vendor: Gnu
Status: Mailutils
Vendor: CVE Published:; 13 September 2005

Summary

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.

References

http://savannah.gnu.org/patch/index.php?func=detailitem&i...

x_refsource_CONFIRM

http://secunia.com/advisories/17020

third-party-advisoryx_refsource_SECUNIA

http://www.gentoo.org/security/en/glsa/glsa-200509-10.xml

vendor-advisoryx_refsource_GENTOO

EPSS Score

57% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 13, 2005
Vulnerability Reserved
Sep 13, 2005