CVE-2005-4444

Опубликовано: 21 дек. 2005

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

Stack-based buffer overflow in the trace message functionality in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allow remote attackers to execute arbitrary code via a long POP3 reply.

Ссылки

http://secunia.com/advisories/17992
Patch
Vendor Advisory
http://secunia.com/secunia_research/2005-61/advisory/
Vendor Advisory
http://securitytracker.com/id?1015385
http://www.osvdb.org/21842
http://www.pmail.com/newsflash.htm#secunia
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/419908/100/0/threaded
http://www.securityfocus.com/bid/15973
http://www.vupen.com/english/advisories/2005/3004
Vendor Advisory
http://secunia.com/advisories/17992
Patch
Vendor Advisory
http://secunia.com/secunia_research/2005-61/advisory/
Vendor Advisory
http://securitytracker.com/id?1015385
http://www.osvdb.org/21842
http://www.pmail.com/newsflash.htm#secunia
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/419908/100/0/threaded
http://www.securityfocus.com/bid/15973
http://www.vupen.com/english/advisories/2005/3004
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:david_harris:pegasus_mail:4.21a:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.21b:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.21c:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.30pb1:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.06287

Низкий

5.1 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-pvx2-q7gm-49v5

github

почти 4 года назад