Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0100

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0100
Last Modified 21 Aug 2010 12:25:29
Published 07 Feb 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0100

Summary

Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.

Vulnerable Systems

Application

  • Gnu Emacs 20.0

  • Gnu Emacs 21.3

  • Gnu Xemacs 21.4


References

XF - xemacs-movemail-format-string(19246)

REDHAT - RHSA-2005:133

REDHAT - RHSA-2005:112

REDHAT - RHSA-2005:110

DEBIAN - DSA-685

DEBIAN - DSA-671

DEBIAN - DSA-670

BUGTRAQ - 20050207 [USN-76-1] Emacs vulnerability

BID - 12462

FEDORA - FLSA-2006:152898

MANDRAKE - MDKSA-2005:038


Last Updated: 27 May 2016 10:39:40