Home > Vulnerability Database > CVE-2005-4591

Mend.io Vulnerability Database

CVE-2005-4591

Date: January 9, 2006

Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 to 0.96.2, when using Unicode databases, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "invalid input sequences" that lead to heap corruption when bogofilter or bogolexer converts character sets.

Severity Score

7.3

Related Resources (12)

Url: http://bogofilter.sourceforge.net/security/bogofilter-SA-2005-01

Url: http://www.vupen.com/english/advisories/2006/0100

Url: http://secunia.com/advisories/18352

Url: https://nvd.nist.gov/vuln/detail/CVE-2005-4591

Url: http://secunia.com/advisories/18717

Url: http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html

Url: http://secunia.com/advisories/18427

Url: https://usn.ubuntu.com/240-1/

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2005-4591

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/24118

Url: http://www.securityfocus.com/bid/16171

Url: https://www.mend.io/vulnerability-database/CVE-2005-4591

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2005-4591

Date: January 9, 2006

Severity Score

Related Resources (12)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?