Lucene search
FreeBSD3E3C860D-7DAE-11D9-A9E7-0001020EED82HistoryJan 31, 2005 - 12:00 a.m.
emacs -- movemail format string vulnerability
2005-01-3100:00:00
vuxml.freebsd.org
12
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.007 Low
EPSS
Percentile
80.1%
Max Vozeler discovered several format string
vulnerabilities in the movemail utility of Emacs. They can
be exploited when connecting to a malicious POP server and
can allow an attacker can execute arbitrary code under the
privileges of the user running Emacs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | movemail | <= 1.0 | UNKNOWN |
| FreeBSD | any | noarch | zh-emacs | < 20.7_4 | UNKNOWN |
| FreeBSD | any | noarch | emacs | < 20.7_4 | UNKNOWN |
| FreeBSD | any | noarch | xemacs | < 21.4.17 | UNKNOWN |
| FreeBSD | any | noarch | xemacs-mule | < 21.4.17 | UNKNOWN |
| FreeBSD | any | noarch | zh-xemacs | < 21.4.17 | UNKNOWN |
| FreeBSD | any | noarch | zh-xemacs-mule | < 21.4.17 | UNKNOWN |
| FreeBSD | any | noarch | xemacs-devel | < 21.5.b19,1 | UNKNOWN |
| FreeBSD | any | noarch | xemacs-devel-21.5 | = b11 | UNKNOWN |
| FreeBSD | any | noarch | xemacs-devel-mule | < 21.5.b19 | UNKNOWN |
Related
nessus
nessus
Fedora Core 2 : emacs-21.3-21.FC2 (2005-115)
2005-02-10 00:00:00
Fedora Core 3 : xemacs-21.4.17-0.FC3 (2005-146)
2005-02-16 00:00:00
Debian DSA-670-1 : emacs20 - format string
2005-02-10 00:00:00
redhat
redhat
(RHSA-2005:134) xemacs security update
2005-02-10 00:00:00
(RHSA-2005:110) emacs security update
2005-02-15 00:00:00
(RHSA-2005:112) emacs security update
2005-02-10 00:00:00
openvas
openvas
SLES9: Security update for Emacs
2009-10-10 00:00:00
Debian: Security Advisory (DSA-671-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 685-1 (emacs21)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 671-1] New xemacs21 packages fix arbitrary code execution
2005-02-08 15:04:25
[SECURITY] [DSA 685-1] New emacs21 packages fix arbitrary code execution
2005-02-17 11:33:38
[SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution
2005-02-08 09:10:48
osv
osv
emacs20 - format string
2005-02-08 00:00:00
emacs21 - format string
2005-02-17 00:00:00
xemacs21 - format string
2005-02-08 00:00:00
ubuntucve
ubuntucve
CVE-2005-0100
2005-02-07 00:00:00
ubuntu
ubuntu
Emacs vulnerability
2005-02-07 00:00:00
cve
cve
CVE-2005-0100
2005-02-07 05:00:00
debiancve
debiancve
CVE-2005-0100
2005-02-07 05:00:00
securityvulns
securityvulns
[USN-76-1] Emacs vulnerability
2005-02-10 00:00:00
gentoo
gentoo
Emacs, XEmacs: Format string vulnerabilities in movemail
2005-02-15 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.007 Low
EPSS
Percentile
80.1%
Related for 3E3C860D-7DAE-11D9-A9E7-0001020EED82