CVE-2005-1099

Greylisting daemon <1.4 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2005-1099. PoCs published by Metasploit, Xpl017Elz, patrick, including Metasploit module exploits/linux/misc/gld_postfix.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in GLD (Greylisting Daemon) for Postfix by sending an overly long string to overwrite the stack. It targets RedHat Linux 7.0 and achieves remote code execution via a crafted payload.

Description

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/16841

This Metasploit module exploits a stack buffer overflow in GLD (Greylisting Daemon) for Postfix by sending an overly long string to overwrite the stack. It targets RedHat Linux 7.0 and achieves remote code execution via a crafted payload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GLD (Greylisting Daemon) <= 1.4
No auth needed
Prerequisites: Network access to the target on port 2525 · Target running GLD <= 1.4 on RedHat Linux 7.0
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Xpl017Elz · cremotelinux
https://www.exploit-db.com/exploits/25392

This exploit targets a buffer overflow and format string vulnerability in GLD 1.4, allowing remote code execution with superuser privileges. It includes multiple exploit methods tailored for different Linux distributions and versions.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GLD 1.4
No auth needed
Prerequisites: Network access to the target service on port 2525 · Target running GLD 1.4 on a vulnerable Linux distribution
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by patrick · rubyremotelinux
https://www.exploit-db.com/exploits/10023

This exploit targets a stack-based buffer overflow in GLD (Greylisting Daemon) for Postfix <= 1.4. It sends a maliciously crafted string to overwrite the stack, achieving remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GLD (Greylisting Daemon) for Postfix <= 1.4
No auth needed
Prerequisites: Network access to the target service on port 2525
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GOOD
by aushack · rubypoclinux
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/gld_postfix.rb

This Metasploit module exploits a stack buffer overflow in GLD (Greylisting Daemon) for Postfix by sending an overly long string to overwrite the stack. It targets RedHat Linux 7.0 and delivers a payload to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: GLD (Greylisting Daemon) <= 1.4
No auth needed
Prerequisites: Network access to the target on port 2525 · Target running GLD <= 1.4 on RedHat Linux 7.0
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/alerts/2005/Apr/1013678.html
Patch, Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/15492
Patch, Vendor Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200504-10.xml
Vendor Advisory x_refsource_confirm
http://www.gasmi.net/down/gld-history
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20066
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14941
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111339935903880&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111342432325670&w=2

Scores

EPSS 0.6766
EPSS Percentile 99.2%

Details

Status published
Products (6)
salim_gasmi/gld 1.0
salim_gasmi/gld 1.1
salim_gasmi/gld 1.2
salim_gasmi/gld 1.3
salim_gasmi/gld 1.3.1
salim_gasmi/gld 1.4
Published Apr 12, 2005
Tracked Since Feb 18, 2026