CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1099

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile18.78th
PublishedApr 12, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.

Affected Platforms (CPE)

πŸ“¦
Salim Gasmi

Gld

= 1.0
πŸ“¦
Salim Gasmi

Gld

= 1.1
πŸ“¦
Salim Gasmi

Gld

= 1.2
πŸ“¦
Salim Gasmi

Gld

= 1.3
πŸ“¦
Salim Gasmi

Gld

= 1.3.1
πŸ“¦
Salim Gasmi

Gld

= 1.4

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=111339935903880&w=2
πŸ”— http://marc.info/?l=bugtraq&m=111342432325670&w=2
πŸ”— http://secunia.com/advisories/14941
πŸ”— http://security.gentoo.org/glsa/glsa-200504-10.xml
πŸ”— http://securitytracker.com/alerts/2005/Apr/1013678.html
πŸ”— http://www.gasmi.net/down/gld-history
πŸ”— http://www.osvdb.org/15492
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/20066

Related Vulnerabilities

CVE-2005-11007.5

Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon (GLD) 1.3 and 1.4 allows remote attackers to e...

CVE-2005-266910.0

Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote at...

CVE-2005-266810.0

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before...

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.