Vulnerabilities > CVE-2005-2642 - Buffer Overflow vulnerability in Mutt 1.5.10

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

mutt

NVD

Published: 2005-08-23

Updated: 2008-09-05

Summary

Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, possibly due to interactions with libiconv or gettext.

Vulnerable Configurations

Part	Description	Count
Application	Mutt Mutt Mutt 1.5.10	1

Statements

contributor	Mark J Cox
lastmodified	2006-08-30
organization	Red Hat
statement	Not vulnerable. This issue did not affect the Linux versions of Mutt.

References

http://comments.gmane.org/gmane.mail.mutt.devel/8379
http://online.securityfocus.com/archive/1/408493
http://online.securityfocus.com/archive/1/408501
http://secunia.com/advisories/16485
http://securitytracker.com/id?1014729
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-08/0594.html
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-08/0600.html
http://www.securityfocus.com/bid/14596