[email protected]NVD:CVE-2005-2878

HistorySep 13, 2005 - 11:03 p.m.

CVE-2005-2878

2005-09-1323:03:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.896 High

EPSS

Percentile

98.8%

JSON

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.

Affected configurations

NVD

Node

gnumailutilsMatch0.6

References

marc.info/?l=bugtraq&m=112785181316043&w=2

savannah.gnu.org/patch/index.php?func=detailitem&item_id=4407

secunia.com/advisories/16783

secunia.com/advisories/17020

www.debian.org/security/2005/dsa-841

www.gentoo.org/security/en/glsa/glsa-200509-10.xml

www.idefense.com/application/poi/display?id=303&type=vulnerabilities&flashstatus=true

www.rosiello.org/archivio/imap4d_FreeBSD_exploit.c

www.securityfocus.com/bid/14794

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.896 High

EPSS

Percentile

98.8%

JSON

Related for NVD:CVE-2005-2878

nessus3 debian2 checkpoint_advisories1 openvas3 cve1 gentoo1 debiancve1 cvelist1 ubuntucve1