Unrated severityNVD Advisory· Published Sep 13, 2005· Updated Apr 16, 2026

CVE-2005-2878

Description

Format string vulnerability in search.c in the imap4d server in GNU Mailutils 0.6 allows remote authenticated users to execute arbitrary code via format string specifiers in the SEARCH command.

Affected products

GNU/Mailutils
cpe:2.3:a:gnu:mailutils:0.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.idefense.com/application/poi/displaynvdExploitPatchVendor Advisory
marc.infonvd
secunia.com/advisories/16783nvd
secunia.com/advisories/17020nvd
www.debian.org/security/2005/dsa-841nvd
www.gentoo.org/security/en/glsa/glsa-200509-10.xmlnvd
www.rosiello.org/archivio/imap4d_FreeBSD_exploit.cnvd
www.securityfocus.com/bid/14794nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.046
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000