CVE-2005-1521
EPSS 4.1%
Description
Integer overflow in the fetch_io function of the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a partial message request with a large value in the END parameter, which leads to a heap-based buffer overflow.
How to fix CVE-2005-1521
To remediate CVE-2005-1521, upgrade the affected package to a fixed version below.
- Debian/mailutils—upgrade to 1:0.6.1-3 or later
Is CVE-2005-1521 being exploited?
Low — EPSS is 4.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:0.6.1-3