CyberSec.Space Logo
Back to CVE Browser

CVE-2005-4568

HIGH
7.5
CVSS Severity Score
EPSS Score0.0370%
EPSS Percentile9.31th
PublishedDec 29, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple format string vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (aka Build 4.4.000 Oct 26 2005) allow remote attackers to execute arbitrary code via format string specifiers in the (1) USER, (2) PASS, and (3) TOP commands to the POP3 server; and the (4) LIST and (5) AUTHENTICATE commands to the IMAP server.

Affected Platforms (CPE)

πŸ“¦
Floosietek

Ftgate

= 4.4_build_4.4.000

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1017.html
πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1019.html
πŸ”— http://www.securityfocus.com/bid/15972
πŸ”— http://www.vupen.com/english/advisories/2005/3010
πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1017.html
πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1019.html
πŸ”— http://www.securityfocus.com/bid/15972
πŸ”— http://www.vupen.com/english/advisories/2005/3010

Related Vulnerabilities

CVE-2005-364010.0

Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute a...

CVE-2002-20787.5

Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial o...

CVE-2002-20827.5

FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes...

CVE-2003-02637.5

Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code v...

CVE-2005-4568 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space