What is CVE-2005-1099?

CVE-2005-1099 is a vulnerability in N/a. Published 2005-04-13.

Is CVE-2005-1099 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-1099

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.

EPSS: 0.790 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

1013678 (vdb-entry, x_refsource_SECTRACK)
15492 (x_refsource_OSVDB, vdb-entry)
GLSA-200504-10 (vendor-advisory, x_refsource_GENTOO)
www.gasmi.net/down/gld-history (x_refsource_CONFIRM)
gld-serverc-bo(20066) (vdb-entry, x_refsource_XF)
14941 (x_refsource_SECUNIA, third-party-advisory)
20050412 GLD (Greylisting daemon for Postfix) multiple vulnerabilities. (mailing-list, x_refsource_BUGTRAQ)
20050413 Gld 1.5 released (security fix) (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2005-1099?: CVE-2005-1099 is a vulnerability in N/a. Published 2005-04-13.
Is CVE-2005-1099 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.