How to Buy
This script is Copyright (C) 2005-2011 Tenable Network Security, Inc.
The remote IMAP server is affected by a format string vulnerability.
GNU Mailutils is a collection of mail utilities, including an IMAP4
daemon, a POP3 daemon, and a very simple mail client.
The remote host is running a version of GNU Mailutils containing a
format string vulnerability in its IMAP4 daemon. By exploiting these
issues, a remote attacker may be able to execute code remotely in the
context of the user executing the daemon process, typically root.
See also :
Apply the patch referenced in the vendor advisory above.
Risk factor :
Medium / CVSS Base Score : 6.5
CVSS Temporal Score : 5.4
Public Exploit Available : true
Family: Gain a shell remotely
Nessus Plugin ID: 19605 (gnu_mailutils_search_format_string.nasl)
Bugtraq ID: 14794
CVE ID: CVE-2005-2878
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.