CVE-2005-1523
First published: Thu May 26 2005(Updated: )
Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the command tag for IMAP commands.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU Mailutils | =0.6 | |
| GNU Mailutils | =0.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-1523?
CVE-2005-1523 is considered to be a high severity vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2005-1523?
To fix CVE-2005-1523, update to GNU Mailutils version 0.6.90 or later, which addresses this vulnerability.
Which versions of GNU Mailutils are affected by CVE-2005-1523?
GNU Mailutils versions 0.5, 0.6, and earlier versions before 0.6.90 are affected by CVE-2005-1523.
What type of vulnerability is CVE-2005-1523?
CVE-2005-1523 is a format string vulnerability that can be exploited through IMAP commands.
Can CVE-2005-1523 be exploited remotely?
Yes, CVE-2005-1523 can be exploited by remote attackers through specially crafted IMAP commands.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/tags
- agent/event
- agent/source
- vendor/gnu
- canonical/gnu mailutils
- version/gnu mailutils/0.6
- version/gnu mailutils/0.5