1. CVE-Search
  2. CVE-2005-4592
ID CVE-2005-4592
Summary Heap-based buffer overflow in bogofilter and bogolexer 0.96.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via words that are longer than the input buffer used by flex.
References
Vulnerable Configurations
  • cpe:2.3:o:bogofilter:email_filter:0.93.5:*:*:*:*:*:*:*
    cpe:2.3:o:bogofilter:email_filter:0.93.5:*:*:*:*:*:*:*
  • cpe:2.3:o:bogofilter:email_filter:0.94.12:*:*:*:*:*:*:*
    cpe:2.3:o:bogofilter:email_filter:0.94.12:*:*:*:*:*:*:*
  • cpe:2.3:o:bogofilter:email_filter:0.94.14:*:*:*:*:*:*:*
    cpe:2.3:o:bogofilter:email_filter:0.94.14:*:*:*:*:*:*:*
  • cpe:2.3:o:bogofilter:email_filter:0.95.2:*:*:*:*:*:*:*
    cpe:2.3:o:bogofilter:email_filter:0.95.2:*:*:*:*:*:*:*
  • cpe:2.3:o:bogofilter:email_filter:0.96.2:*:*:*:*:*:*:*
    cpe:2.3:o:bogofilter:email_filter:0.96.2:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 20-07-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 16171
confirm http://bogofilter.sourceforge.net/security/bogofilter-SA-2005-02
secunia
  • 18352
  • 18717
suse SUSE-SR:2006:003
vupen ADV-2006-0100
xf bogofilter-long-word-bo(24119)
Last major update 20-07-2017 - 01:29
Published 31-12-2005 - 05:00
Last modified 20-07-2017 - 01:29
Back to Top