CVE-2005-4445

Опубликовано: 21 дек. 2005

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

Off-by-one error in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allows remote attackers to execute arbitrary code via a long email message header, which triggers a one-byte buffer overflow.

Ссылки

http://secunia.com/advisories/17992
Vendor Advisory
http://secunia.com/secunia_research/2005-61/advisory/
Vendor Advisory
http://securitytracker.com/id?1015385
http://www.osvdb.org/21843
http://www.pmail.com/newsflash.htm#secunia
Vendor Advisory
http://www.securityfocus.com/archive/1/419908/100/0/threaded
http://www.securityfocus.com/bid/15973
http://secunia.com/advisories/17992
Vendor Advisory
http://secunia.com/secunia_research/2005-61/advisory/
Vendor Advisory
http://securitytracker.com/id?1015385
http://www.osvdb.org/21843
http://www.pmail.com/newsflash.htm#secunia
Vendor Advisory
http://www.securityfocus.com/archive/1/419908/100/0/threaded
http://www.securityfocus.com/bid/15973

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:david_harris:pegasus_mail:4.21a:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.21b:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.21c:*:*:*:*:*:*:*

cpe:2.3:a:david_harris:pegasus_mail:4.30pb1:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04821

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-x3xc-8qqv-4cq8

github

почти 4 года назад