CVE-2005-1520
mailutils - several
EPSS 14.6%
Description
Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-mail.
How to fix CVE-2005-1520
To remediate CVE-2005-1520, upgrade the affected package to a fixed version below.
- Debian/mailutils—upgrade to 1:0.6.1-3 or later
- Debian/mailutils—upgrade to 20020409-1woody2 or later
Is CVE-2005-1520 being exploited?
Moderate — EPSS is 14.6%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1:0.6.1-3
- from 0, < 20020409-1woody2