Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2005-0100

Published: Feb 07, 2005 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2005-0100
CWEhttps://cwe.mitre.org/data/definitions/NVD-Other.html

Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.

Affected Software

Name Vendor Start Version End Version
Emacs Gnu * 20.0 (including)
Emacs Gnu 21.3 (including) 21.3 (including)
Xemacs Gnu * 21.4 (including)
Emacs21 Ubuntu dapper *
Emacs21 Ubuntu devel *
Emacs21 Ubuntu edgy *
Emacs21 Ubuntu feisty *
Xemacs21 Ubuntu dapper *
Xemacs21 Ubuntu devel *
Xemacs21 Ubuntu edgy *
Xemacs21 Ubuntu feisty *
Red Hat Enterprise Linux 3 RedHat emacs-0:21.3-4.1 *
Red Hat Enterprise Linux 3 RedHat xemacs-0:21.4.13-8.ent.1 *
Red Hat Enterprise Linux 4 RedHat emacs-0:21.3-19.EL.1 *
Red Hat Enterprise Linux 4 RedHat xemacs-0:21.4.15-10.EL.1 *

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use