VYPR
Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Jun 16, 2026

CVE-2005-4591

CVE-2005-4591

Description

Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 to 0.96.2, when using Unicode databases, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "invalid input sequences" that lead to heap corruption when bogofilter or bogolexer converts character sets.

Affected products

6
  • cpe:2.3:o:bogofilter:email_filter:0.93.5:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:bogofilter:email_filter:0.93.5:*:*:*:*:*:*:*
    • cpe:2.3:o:bogofilter:email_filter:0.94.12:*:*:*:*:*:*:*
    • cpe:2.3:o:bogofilter:email_filter:0.94.14:*:*:*:*:*:*:*
    • cpe:2.3:o:bogofilter:email_filter:0.95.2:*:*:*:*:*:*:*
    • cpe:2.3:o:bogofilter:email_filter:0.96.2:*:*:*:*:*:*:*
  • Range: >=0.93.5, <=0.96.2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.