CVE-2005-4591
EPSS 4.9%
Description
Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 to 0.96.2, when using Unicode databases, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "invalid input sequences" that lead to heap corruption when bogofilter or bogolexer converts character sets.
How to fix CVE-2005-4591
To remediate CVE-2005-4591, upgrade the affected package to a fixed version below.
- Debian/bogofilter—upgrade to 0.96.3 or later
Is CVE-2005-4591 being exploited?
Low — EPSS is 4.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.96.3