CVEブラウザに戻る

CVE-2005-0892

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1000%

EPSS Percentile2.73th

Published2005年3月28日

Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.

Affected Platforms (CPE)

📦

Smail

Smail

= 3.2.0.120

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=111177045217717&w=2

🔗 http://www.debian.org/security/2005/dsa-722

🔗 http://marc.info/?l=bugtraq&m=111177045217717&w=2

🔗 http://www.debian.org/security/2005/dsa-722

関連する脆弱性情報

CVE-2000-037010.0

The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for ...

CVE-2005-08937.6

modes.c in smail 3.2.0.120 implements signal handlers with certain unsafe library calls, which may allow attackers to execute arbi...

CVE-2005-181210.0

Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbit...

CVE-2005-120810.0

Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to exe...