CVE-2005-0100
First published: Mon Feb 07 2005(Updated: )
Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU Emacs | =21.3 | |
| Gnu Xemacs | <=21.4 | |
| GNU Emacs | <=20.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2005/dsa-670
- http://www.debian.org/security/2005/dsa-671
- http://www.debian.org/security/2005/dsa-685
- http://www.redhat.com/support/errata/RHSA-2005-110.html
- http://www.redhat.com/support/errata/RHSA-2005-112.html
- http://www.redhat.com/support/errata/RHSA-2005-133.html
- http://www.securityfocus.com/bid/12462
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:038
- http://marc.info/?l=bugtraq&m=110780416112719&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19246
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9408
- http://www.securityfocus.com/archive/1/433928/30/5010/threaded
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/gnu
- canonical/gnu emacs
- version/gnu emacs/21.3
- canonical/gnu xemacs
- version/gnu xemacs/21.4
- version/gnu emacs/20.0