CVE-2005-1523

GNU Mailutils <0.6.90 - RCE

Title source: llm

Description

Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the command tag for IMAP commands.

Exploits (1)

exploitdb WORKING POC VERIFIED
by CoKi · cremotelinux
https://www.exploit-db.com/exploits/1123

References (5)

Scores

EPSS 0.1409
EPSS Percentile 94.4%

Details

Status published
Products (2)
gnu/mailutils 0.5
gnu/mailutils 0.6
Published May 26, 2005
Tracked Since Feb 18, 2026