CVE-2005-1520

GNU Mailutils < 0.6.90 - Remote Code Execution via Crafted Email Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1520. PoCs published by infamous41md.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Gaucho Mail Client 1.4 by sending a malformed email with an overly long Content-Type header. It leverages SEH overwrites and shellcode execution to bind a shell on port 2001.

Description

Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-mail.

Exploits (1)

exploitdb WORKING POC VERIFIED

by infamous41md · c++remotelinux

https://www.exploit-db.com/exploits/25706

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Gaucho Mail Client 1.4 by sending a malformed email with an overly long Content-Type header. It leverages SEH overwrites and shellcode execution to bind a shell on port 2001.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Gaucho Mail Client 1.4

No auth needed

Prerequisites: Network access to the target system · Target must be running Gaucho Mail Client 1.4 · Target must connect to a malicious POP3 server

MITRE ATT&CK