CVE-2005-1513
published 2005-05-11CVE-2005-1513: Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers…
PriorityP335critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
10.79%
95.3th percentile
Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| netqmail | netqmail | >= 0 < 1.06-6.2~deb10u1build0.16.04.1 | 1.06-6.2~deb10u1build0.16.04.1 |
| netqmail | netqmail | >= 0 < 1.06-6.2~deb10u1build0.18.04.1 | 1.06-6.2~deb10u1build0.18.04.1 |
| netqmail | netqmail | >= 0 < 1.06-6.2~deb10u1build0.20.04.1 | 1.06-6.2~deb10u1build0.20.04.1 |
| netqmail | netqmail | >= 0 < 1.06-6.2~deb10u1build0.14.04.1+esm1 | 1.06-6.2~deb10u1build0.14.04.1+esm1 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
netqmail vulnerabilities
vendor_ubuntu·2020-11-05·CVSS 9.8
CVE-2005-1514 [CRITICAL] netqmail vulnerabilities
Title: netqmail vulnerabilities
Summary: netqmail could be made to crash if it received specially crafted
input.
It was discovered that netqmail did not properly handle certain input. Both
remote and local attackers could use this vulnerability to cause netqmail
to crash or execute arbitrary code. (CVE-2005-1513, CVE-2005-1514,
CVE-2005-1515)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this to bypass email
address validation. (CVE-2020-3811)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this vulnerability to
cause netqmail to disclose sensitive information. (CVE-2020-3812)
Instructions: In general, a standard system update will
Ubuntu
netqmail vulnerabilities
vendor_ubuntu·2020-09-29·CVSS 9.8
CVE-2005-1513 [CRITICAL] netqmail vulnerabilities
Title: netqmail vulnerabilities
Summary: netqmail could be made to crash or run programs as any user (except root) if it
received specially crafted network traffic.
It was discovered that netqmail did not properly handle certain input. Both
remote and local attackers could use this vulnerability to cause netqmail
to crash or execute arbitrary code. (CVE-2005-1513, CVE-2005-1514,
CVE-2005-1515)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this to bypass email
address validation. (CVE-2020-3811)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this vulnerability to
cause netqmail to disclose sensitive information. (CVE-2020-3812)
Ins
GHSA
GHSA-mrmc-m8fj-g9px: Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote at
ghsa_unreviewed·2022-05-01
CVE-2005-1513 [MEDIUM] CWE-190 GHSA-mrmc-m8fj-g9px: Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote at
Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
OSV
netqmail vulnerabilities
osv·2020-09-29·CVSS 9.8
CVE-2005-1513 [CRITICAL] netqmail vulnerabilities
netqmail vulnerabilities
It was discovered that netqmail did not properly handle certain input. Both
remote and local attackers could use this vulnerability to cause netqmail
to crash or execute arbitrary code. (CVE-2005-1513, CVE-2005-1514,
CVE-2005-1515)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this to bypass email
address validation. (CVE-2020-3811)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this vulnerability to
cause netqmail to disclose sensitive information. (CVE-2020-3812)
OSV
CVE-2005-1513: Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote at
osv·2020-05-24·CVSS 9.8
CVE-2005-1513 [CRITICAL] CVE-2005-1513: Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote at
Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
No detection rules found.
No public exploits indexed.
Qualys
Qualys Research Nominated for Pwnie Awards 2021
blogs_qualys·2021-08-02·CVSS 9.8
[CRITICAL] Qualys Research Nominated for Pwnie Awards 2021
The Qualys Research team has been nominated for five Pwnie Awards this year in three different categories. In addition to nominations for Best Privilege Escalation Bug (2 nominations) and Best Server-Side Bug (2 nominations), the team is also nominated for Most Under-Hyped Research .
Qualys is honored for the second time in a row after being nominated for five Pwnie Awards in 2020 .
The Pwnie Awards are an annual recognition celebrating the achievements of security researchers and the security community. Nominations are taken from the security community at large, and a panel of respected security researchers are reviewing the Active Nominations and will announce winners in each category at Black Hat USA 2021 on August 4, 2021 at 5:30pm PT.
The Qualys Research team is nominated in these
Qualys
Qualys Research Nominated for Pwnie Awards 2021 | Qualys
blogs_qualys·2021-08-02·CVSS 9.8
[CRITICAL] Qualys Research Nominated for Pwnie Awards 2021 | Qualys
The Qualys Research team has been nominated for five Pwnie Awards this year in three different categories. In addition to nominations for Best Privilege Escalation Bug (2 nominations) and Best Server-Side Bug (2 nominations), the team is also nominated for Most Under-Hyped Research.
Qualys is honored for the second time in a row after being nominated for five Pwnie Awards in 2020.
The Pwnie Awards are an annual recognition celebrating the achievements of security researchers and the security community. Nominations are taken from the security community at large, and a panel of respected security researchers are reviewing the Active Nominations and will announce winners in each category at Black Hat USA 2021 on August 4, 2021 at 5:30pm PT.
The Qualys Research team is nominated in these ca
Qualys
Qualys Research Nominated for Pwnie Awards 2020
blogs_qualys·2020-11-25·CVSS 9.8
[CRITICAL] Qualys Research Nominated for Pwnie Awards 2020
## Table of Contents
About Pwnie Awards
The Qualys Security Advisory team has been nominated for five Pwnie Awards this year in three different categories. In addition to nominations for Best Privilege Escalation Bug and Best Server-Side Bug (3 nominations), we are proud to be nominated for Epic Achievement.
The Pwnie Awards are an annual recognition celebrating the achievements of security researchers and the security community. Nominations are taken from the security community at large, and a panel of respected security researchers will review the Active Nominations and announce winners in each category at Black Hat Europe on December 9, 2020.
The Qualys Security Advisory Team is a nominee in these categories:
## Epic Achievement
15 years later: Remote Code Execution in qmail (CVE-
Qualys
Qualys Research Nominated for Pwnie Awards 2020 | Qualys
blogs_qualys·2020-11-25·CVSS 9.8
[CRITICAL] Qualys Research Nominated for Pwnie Awards 2020 | Qualys
#### Table of Contents
- About Pwnie Awards
The Qualys Security Advisory team has been nominated for five Pwnie Awards this year in three different categories. In addition to nominations for Best Privilege Escalation Bug and Best Server-Side Bug (3 nominations), we are proud to be nominated for Epic Achievement.
The Pwnie Awards are an annual recognition celebrating the achievements of security researchers and the security community. Nominations are taken from the security community at large, and a panel of respected security researchers will review the Active Nominations and announce winners in each category at Black Hat Europe on December 9, 2020.
The Qualys Security Advisory Team is a nominee in these categories:
### Epic Achievement
- 15 years later: Remote Code Execution in qmai
CWE
Integer Overflow or Wraparound
mitre_cwe
CWE-190 Integer Overflow or Wraparound
CWE-190: Integer Overflow or Wraparound
The product performs a calculation that can
produce an integer overflow or wraparound when the logic
assumes that the resulting value will always be larger than
the original value. This occurs when an integer value is
incremented to a value that is too large to store in the
associated representation. When this occurs, the value may
become a very small or negative number.
Modes of Introduction:
Phase: Implementation
Note: This weakness may become security critical when determining the offset or size in behaviors such as memory allocation, copying, and concatenation.
Common Consequences:
Scope: Availability. Impact: DoS: Crash, Exit, or Restart, DoS: Resource Consumption (Memory), DoS: Instability. This weakness can generally lead to undefined behav
CWE
Improper Restriction of Operations within the Bounds of a Memory Buffer
mitre_cwe
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
Background: Certain languages allow direct addressing of memory locations and do not automatically ensure that these locations are valid for the memory buffer that is being referenced.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity, Confidentiality, Availability. Impact: Execute Unauthorized Code or Commands, Modify Memory. If the memory accessible by the attacker can be effec
http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0101.htmlhttp://packetstormsecurity.com/files/157805/Qualys-Security-Advisory-Qmail-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/158203/Qmail-Local-Privilege-Escalation-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172804/RenderDoc-1.26-Local-Privilege-Escalation-Remote-Code-Execution.htmlhttp://seclists.org/fulldisclosure/2020/Jun/27http://seclists.org/fulldisclosure/2020/May/42http://seclists.org/fulldisclosure/2023/Jun/2http://securitytracker.com/id?1013911http://www.guninski.com/where_do_you_want_billg_to_go_today_4.htmlhttp://www.openwall.com/lists/oss-security/2020/05/19/8http://www.openwall.com/lists/oss-security/2020/05/20/2http://www.openwall.com/lists/oss-security/2020/05/20/5http://www.openwall.com/lists/oss-security/2020/06/16/2http://www.openwall.com/lists/oss-security/2023/06/06/3https://lists.debian.org/debian-lts-announce/2020/06/msg00002.htmlhttps://security.gentoo.org/glsa/202007-01https://usn.ubuntu.com/4556-1/https://www.debian.org/security/2020/dsa-4692http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0101.htmlhttp://packetstormsecurity.com/files/157805/Qualys-Security-Advisory-Qmail-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/158203/Qmail-Local-Privilege-Escalation-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172804/RenderDoc-1.26-Local-Privilege-Escalation-Remote-Code-Execution.htmlhttp://seclists.org/fulldisclosure/2020/Jun/27http://seclists.org/fulldisclosure/2020/May/42http://seclists.org/fulldisclosure/2023/Jun/2http://securitytracker.com/id?1013911http://www.guninski.com/where_do_you_want_billg_to_go_today_4.htmlhttp://www.openwall.com/lists/oss-security/2020/05/19/8http://www.openwall.com/lists/oss-security/2020/05/20/2http://www.openwall.com/lists/oss-security/2020/05/20/5http://www.openwall.com/lists/oss-security/2020/06/16/2http://www.openwall.com/lists/oss-security/2023/06/06/3https://lists.debian.org/debian-lts-announce/2020/06/msg00002.htmlhttps://security.gentoo.org/glsa/202007-01https://usn.ubuntu.com/4556-1/https://www.debian.org/security/2020/dsa-4692
2005-05-11
Published