CVE-2005-1513

Related Files

Ubuntu Security Notice USN-4621-1

Posted Nov 6, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4621-1 - It was discovered that netqmail did not properly handle certain input. Both remote and local attackers could use this vulnerability to cause netqmail to crash or execute arbitrary code. It was discovered that netqmail did not properly handle certain input when validating email addresses. An attacker could use this to bypass email address validation. Various other issues were also addressed.

tags | advisory, remote, arbitrary, local

systems | linux, ubuntu

advisories | CVE-2005-1513, CVE-2005-1515, CVE-2020-3811, CVE-2020-3812

SHA-256 | 505a42b4d8cc358df017a8d138c2f348f0946ebc27b59443993f76b899094ba8

Download | Favorite | View

Ubuntu Security Notice USN-4556-1

Posted Sep 29, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4556-1 - It was discovered that netqmail did not properly handle certain input. Both remote and local attackers could use this vulnerability to cause netqmail to crash or execute arbitrary code. It was discovered that netqmail did not properly handle certain input when validating email addresses. An attacker could use this to bypass email address validation. Various other issues were also addressed.

tags | advisory, remote, arbitrary, local

systems | linux, ubuntu

advisories | CVE-2005-1513, CVE-2005-1515, CVE-2020-3811, CVE-2020-3812

SHA-256 | 6263ee9cfe8c1c94cb907772cb2c16323c8cab8a75d3c7cb14bcd598f359e2ec

Download | Favorite | View

Gentoo Linux Security Advisory 202007-01

Posted Jul 27, 2020

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202007-1 - Multiple vulnerabilities have been found in netqmail, the worst of which could result in the arbitrary execution of code. Versions less than 1.06-r13 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2005-1513, CVE-2005-1514, CVE-2005-1515

SHA-256 | 2bc5aa2768224760ae2e5be04e2ea7eb43b0766caf59e79d678a3e2b2c3c64fb

Download | Favorite | View

Qmail Local Privilege Escalation / Remote Code Execution

Posted Jun 23, 2020

Authored by Qualys Security Advisory

Qualys has released their local privilege escalation and remote code execution exploit for qmail that leverages the vulnerability as described in CVE-2005-1513.

tags | exploit, remote, local, code execution

systems | unix

advisories | CVE-2005-1513

SHA-256 | aeddf83bcc9a800cd02239af4a54d57183ef075fb1b760208db0cc07f6338385

Download | Favorite | View

Debian Security Advisory 4692-1

Posted May 28, 2020

Authored by Debian | Site debian.org

Debian Linux Security Advisory 4692-1 - Georgi Guninski and the Qualys Research Labs discovered multiple vulnerabilities in qmail (shipped in Debian as netqmail with additional patches) which could result in the execution of arbitrary code, bypass of mail address verification and a local information leak whether a file exists or not.

tags | advisory, arbitrary, local, vulnerability

systems | linux, debian

advisories | CVE-2005-1513, CVE-2005-1514, CVE-2005-1515, CVE-2020-3811, CVE-2020-3812

SHA-256 | 71843b017c5f98386f0eee906018b39853e36b3e3a3c0d30450769937bd7c1cd

Download | Favorite | View

Qualys Security Advisory - Qmail Remote Code Execution

Posted May 21, 2020

Authored by Alexander Peslyak, Qualys Security Advisory, Stephane Bellenger, Jean-Paul Michel, Julien Barthelemy, Andrew Richards

In 2005, three vulnerabilities were discovered in qmail but were never fixed because they were believed to be unexploitable in a default installation. Qualys recently re-discovered these vulnerabilities and were able to exploit one of them remotely in a default installation.

tags | exploit, vulnerability

advisories | CVE-2005-1513, CVE-2005-1514, CVE-2005-1515, CVE-2020-3811, CVE-2020-3812

SHA-256 | b40bd18472de68aa880c0372a9f3305689c40f370d5468a34516ef9530fd6906

Download | Favorite | View