GNU Mailutils imap4d 0.5 < 0.6.90 Remote Format String Exploit

No description provided by source. / gun-imapd.c gnu mailutils-0.5 - mailutils-0.6.90 remote formatstring exploit written and tested on FC3. this is a first testing version and the onlyone to go public. by [email protected] / include stdio.h include string.h include unistd.h include stdlib.h...

GNU Mailutils imap4d SEARCH Format String (CVE-2005-2878)

The Internet Message Access Protocol IMAP specifies a protocol for the access and manipulation of electronic mail. The protocol permits the manipulation of mailboxes on a remote server and allows a remote client, among other operations, to create, delete, or rename mailboxes on the server side. T...

多个供应商IMAP服务器远程拒绝服务漏洞

BUGTRAQ ID: 31318 CNCAN ID：CNCAN-2008092403 多个供应商的IMAP服务器处理IMAP登录请求时存在未明错误，可导致拒绝服务攻击。 攻击者可以利用此问题使受影响应用程序停止响应，对合法用户进行拒绝服务攻击。 目前测试受此漏洞影响的版本包括： University of Washington imapd Carnegie Mellon University Cyrus IMAP Server GNU Mailutils imapd University of Washington imapd GNU Mailutils 0 Debian Linux...

Gentoo Security Advisory GLSA 200509-10 (mailutils)

The remote host is missing updates announced in advisory GLSA 200509-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200506-02 (mailutils)

The remote host is missing updates announced in advisory GLSA 200506-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200509-10 (mailutils)

The remote host is missing updates announced in advisory GLSA 200509-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200505-20 (mailutils)

The remote host is missing updates announced in advisory GLSA 200505-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200506-02 (mailutils)

The remote host is missing updates announced in advisory GLSA 200506-02. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GNU Mailutils imap4d 0.6 Remote Format String Exploit (exec-shield)

Exploit for linux platform in category remote exploits =================================================================== GNU Mailutils imap4d 0.6 Remote Format String Exploit exec-shield =================================================================== / Fedora Core 6 exec-shield based GNU...

GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit (fbsd)

Exploit for bsd platform in category remote exploits ===================================================================== GNU Mailutils imap4d 0.6 search Remote Format String Exploit fbsd ===================================================================== / Copyright c 2005 Rosiello Security...

[SECURITY] [DSA 841-1] New mailutils packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 841-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2005 http://www.debian.org/security/faq -...

GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit (fbsd)

No description provided by source. / Copyright c 2005 Rosiello Security http://www.rosiello.org Permission is granted for the redistribution of this software electronically. It may not be edited in any way without the express written consent of Rosiello Security. Disclaimer: The author published...

Mailutils: Format string vulnerability in imap4d

Background The GNU Mailutils are a collection of mail-related utilities, including an IMAP4 server imap4d. Description The imap4d server contains a format string bug in the handling of IMAP SEARCH requests. Impact An authenticated IMAP user could exploit the format string error in imap4d to execu...

CVE-2005-2878

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command...

DEBIAN-CVE-2005-2878

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command...

CVE-2005-2878

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command...

CVE-2005-2878

CVE-2005-2878 is a format-string vulnerability in GNU Mailutils imap4d’s SEARCH handling. An authenticated attacker could exploit it to execute arbitrary code with imap4d privileges. Debian and Gentoo advisories (DSA-841-1, GLSA 200509-10) document the fix to mailutils 0.6.1-4sarge1 and related p...

CVE-2005-2878

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command...

CVE-2005-2878

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command...

GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit

No description provided by source. / GNU Mailutils 0.6 imap4d 'search' format string exploit. Ref: www.idefense.com/application/poi/display?id=303&type=vulnerabilities This silly exploit uses hardcoded values taken from GNU/Debian testing etch. $ ./imap4dsearchexpl -h 127.0.0.1 -p 143 -u clem1 -s...