Lucene search
HistoryMay 26, 2005 - 4:00 a.m.
CVE-2005-1521
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.059
Percentile
93.5%
Integer overflow in the fetch_io function of the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a partial message request with a large value in the END parameter, which leads to a heap-based buffer overflow.
Affected configurations
Node
gnumailutilsMatch0.5
ORgnumailutilsMatch0.6
Related
debiancve
debiancve
CVE-2005-1521
2005-05-26 04:00:00
cve
cve
CVE-2005-1521
2005-05-26 04:00:00
securityvulns
securityvulns
cvelist
cvelist
CVE-2005-1521
2005-05-26 04:00:00
ubuntucve
ubuntucve
CVE-2005-1521
2005-05-26 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-20 (mailutils)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-732-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200505-20 (mailutils)
2008-09-24 00:00:00
nessus
nessus
GLSA-200505-20 : Mailutils: Multiple vulnerabilities in imap4d and mail
2005-05-28 00:00:00
Debian DSA-732-1 : mailutils - several vulnerabilities
2005-06-17 00:00:00
GNU Mailutils <= 0.6 Multiple Vulnerabilities
2005-05-26 00:00:00
debian
debian
[SECURITY] [DSA 732-1] New mailutils packages fix several vulnerabilities
2005-06-03 15:52:44
[SECURITY] [DSA 732-1] New mailutils packages fix several vulnerabilities
2005-06-03 15:52:44
osv
osv
mailutils - several
2005-06-03 00:00:00
gentoo
gentoo
Mailutils: Multiple vulnerabilities in imap4d and mail
2005-05-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.059
Percentile
93.5%
Related for NVD:CVE-2005-1521