Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.
Max CVSS
7.5
EPSS Score
89.64%
Published
2005-09-13
Updated
2016-10-18
Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the command tag for IMAP commands.
Max CVSS
7.5
EPSS Score
83.18%
Published
2005-05-26
Updated
2008-09-05
Integer overflow in the fetch_io function of the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a partial message request with a large value in the END parameter, which leads to a heap-based buffer overflow.
Max CVSS
7.5
EPSS Score
7.44%
Published
2005-05-26
Updated
2008-09-05
Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-mail.
Max CVSS
7.5
EPSS Score
12.08%
Published
2005-05-26
Updated
2008-09-05
4 vulnerabilities found