The imap4d server for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows authenticated remote users to cause a denial of service (CPU consumption) via a large range value in the FETCH command.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mailutils | Gnu | 0.5 (including) | 0.5 (including) |
| Mailutils | Gnu | 0.6 (including) | 0.6 (including) |
| Mailutils | Ubuntu | devel | * |
References
- http://secunia.com/advisories/15442
- http://securitytracker.com/id?1014052
- http://www.debian.org/security/2005/dsa-732
- http://www.idefense.com/application/poi/display?id=247\u0026type=vulnerabilities
- http://www.securityfocus.com/bid/13765
- http://secunia.com/advisories/15442
- http://securitytracker.com/id?1014052
- http://www.debian.org/security/2005/dsa-732
- http://www.idefense.com/application/poi/display?id=247\u0026type=vulnerabilities
- http://www.securityfocus.com/bid/13765